last executing test programs:

4m50.355830146s ago: executing program 32 (id=534):
mkdirat(0xffffffffffffff9c, &(0x7f0000002000)='./file0\x00', 0x0)
r0 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x8002)
ioctl$SG_IO(r0, 0x2285, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
write$sndseq(r1, &(0x7f0000000180)=[{0x0, 0x3, 0x9, 0x0, @tick, {0xbc}, {0x0, 0x8}, @connect={{0xfd, 0x4}, {0x2, 0x6}}}, {0x0, 0x6, 0x0, 0x0, @tick=0x1, {}, {}, @addr={0xc6, 0xf8}}], 0x38)
write$sndseq(r1, &(0x7f0000000200)=[{0x0, 0x0, 0x0, 0x0, @tick=0x6, {0x9}, {}, @quote={{0x2}, 0x5}}, {0x0, 0x0, 0x0, 0x0, @time={0x0, 0x4001}, {}, {0xef}, @ext={0x0, 0x0}}, {0x7, 0x0, 0x0, 0x0, @time, {0x0, 0x9}, {}, @control={0x0, 0x6}}, {0x0, 0x0, 0x1b, 0x0, @time={0x1, 0x9}, {}, {}, @control}, {0x10, 0x8, 0x0, 0xfc, @time={0x7, 0x7}, {0x0, 0x8}, {}, @control={0xce, 0x4, 0x966}}], 0x8c)
r2 = syz_io_uring_setup(0x1e21, &(0x7f0000000200)={0x0, 0x86f7, 0x10100}, &(0x7f0000000040)=<r3=>0x0, &(0x7f0000000000)=<r4=>0x0)
r5 = getpid()
prlimit64(r5, 0xe, &(0x7f0000000000)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x2)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r6 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r6, &(0x7f0000019680)=""/102392, 0x18ff8)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r7, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000480)={0x18, 0x3d, 0x107, 0x70bd2b, 0x25dfdbfd, {0x4, 0x7c}, [@typed={0x4}]}, 0x18}}, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x18, 0x3, &(0x7f0000000080)=ANY=[@ANYBLOB="180000000000000000000000000000009500000003000000"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r8 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r8, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000340)=@newtaction={0x5c, 0x30, 0xb, 0x0, 0x25dfdbfd, {}, [{0x48, 0x1, [@m_ct={0x44, 0x1, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x0, 0x0, 0x0, 0x0, 0x8000000}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0x5c}}, 0x4004084)
syz_io_uring_submit(r3, r4, &(0x7f00000001c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd_index=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x22})
io_uring_enter(r2, 0x48e9, 0x0, 0x2, 0x0, 0x0)
r9 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002040), 0x2, 0x0)
mount$fuse(0x0, &(0x7f0000002080)='./file0\x00', &(0x7f00000020c0), 0x0, &(0x7f0000002100)={{'fd', 0x3d, r9}, 0x2c, {'rootmode', 0x3d, 0x4000}})
openat$dir(0xffffffffffffff9c, &(0x7f0000002180)='./file0\x00', 0x0, 0x0)
syz_fuse_handle_req(r9, &(0x7f0000004300), 0x2000, &(0x7f0000006300)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f00000063c0)={0x20}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})

3m50.649923583s ago: executing program 3 (id=1669):
r0 = socket$nl_route(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'bridge_slave_1\x00', <r2=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)=@newlink={0x44, 0x10, 0x1, 0x70bd27, 0xa5dfdbfb, {0x0, 0x0, 0x0, r2, 0x64e10, 0x16201}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @bridge_slave={{0x11}, {0xc, 0x5, 0x0, 0x1, [@IFLA_BRPORT_UNICAST_FLOOD={0x5}]}}}]}, 0x44}, 0x1, 0x0, 0x0, 0x404c000}, 0x4004002)

3m50.579092755s ago: executing program 3 (id=1672):
r0 = socket(0x2, 0x80805, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r2}, 0x10)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
sendmmsg$inet(r0, &(0x7f0000000880)=[{{&(0x7f0000000080)={0x2, 0x0, @rand_addr=0xac1414bb}, 0x10, &(0x7f0000000100)=[{&(0x7f00000000c0)='Q', 0x1}], 0x1}, 0x20000000}, {{&(0x7f0000000180)={0x2, 0x0, @remote}, 0x69, &(0x7f0000000400)=[{&(0x7f0000000240)="b9", 0x26892}], 0xbb}}], 0x2, 0x0)

3m50.54884891s ago: executing program 3 (id=1674):
r0 = syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x0)
ioctl$EVIOCGBITSW(r0, 0x40095505, 0x0)

3m50.479418054s ago: executing program 3 (id=1675):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000006c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000004000000b705000008000000850000006a00000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000440)={&(0x7f00000003c0)='kmem_cache_free\x00', r1}, 0x18)
mknodat(0xffffffffffffff9c, &(0x7f00000000c0)='./file2\x00', 0x0, 0x0)
renameat2(0xffffffffffffff9c, &(0x7f0000000380)='./file2\x00', 0xffffffffffffff9c, &(0x7f0000000340)='./file7\x00', 0x4)

3m50.455026289s ago: executing program 3 (id=1678):
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f00000012c0)={0x0, 0x1}, 0x4)

3m50.388284081s ago: executing program 3 (id=1681):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)=@newlink={0x28, 0x10, 0x801, 0x0, 0x0, {}, [@IFLA_GROUP={0x8}]}, 0x28}}, 0x0)

3m50.273602891s ago: executing program 33 (id=1681):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)=@newlink={0x28, 0x10, 0x801, 0x0, 0x0, {}, [@IFLA_GROUP={0x8}]}, 0x28}}, 0x0)

3m18.111208039s ago: executing program 1 (id=1880):
bpf$MAP_CREATE(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="050000000400000099"], 0x48)
socket$netlink(0x10, 0x3, 0x13)
r0 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$tipc2(0x0, r0)
fcntl$lock(0xffffffffffffffff, 0x6, 0x0)
pread64(0xffffffffffffffff, 0x0, 0x0, 0xe0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r1 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000540), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x3, 0x0, 0x111, 0x4}}, 0x20)
r2 = bpf$MAP_CREATE(0x0, 0x0, 0x50)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000280)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r2}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x9}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r3}, 0x10)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0)
write$RDMA_USER_CM_CMD_LISTEN(r1, &(0x7f0000000040)={0x7, 0x8, 0xfa00, {0xffffffffffffffff, 0x1}}, 0x10)
write$RDMA_USER_CM_CMD_DESTROY_ID(r1, &(0x7f0000000380)={0x1, 0x10, 0xfa00, {&(0x7f0000000300)}}, 0x18)

3m17.822930831s ago: executing program 1 (id=1884):
r0 = syz_open_dev$evdev(&(0x7f00000000c0), 0x2, 0x862b01)
ioctl$EVIOCSFF(r0, 0x40304580, &(0x7f0000000b40)={0x52, 0x1, 0x1, {0xffff, 0x1}, {0x45, 0x2}, @const={0x62, {0x400, 0x5, 0x9, 0x101}}})
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x13, &(0x7f0000000380)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c1300000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000048aa005e850000002d0000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000e00000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000580)={&(0x7f0000000540)='fib6_table_lookup\x00', r1}, 0x10)
r2 = socket$inet6_sctp(0xa, 0x801, 0x84)
sendto$inet6(r2, &(0x7f00000002c0)="88", 0x1, 0x0, &(0x7f0000000100)={0xa, 0x0, 0x0, @remote, 0xa}, 0x1c)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$MAP_LOOKUP_ELEM(0x2, &(0x7f0000001740)={r3, 0x0, &(0x7f0000001700)=""/53}, 0x20)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000008c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000140)='kmem_cache_free\x00', r4}, 0x10)
r5 = socket$netlink(0x10, 0x3, 0x10)
bind$netlink(r5, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
setsockopt$sock_int(r5, 0x1, 0x8, &(0x7f0000000000), 0x4)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RELOAD(r6, &(0x7f0000000100)={0x0, 0xffffffffffffff57, &(0x7f00000000c0)={&(0x7f0000000080)={0x3c, r7, 0x1, 0x3, 0x0, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x0, 0x8c, 0x4}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x4040010}, 0x0)
setsockopt$netlink_NETLINK_BROADCAST_ERROR(r5, 0x10e, 0x4, &(0x7f0000000640)=0x1802, 0x4)
sendmsg$IPSET_CMD_ADD(0xffffffffffffffff, 0x0, 0x80)
write$char_usb(r0, &(0x7f0000000040)="e2", 0x2250)
socket$key(0xf, 0x3, 0x2)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000040000009c0000000b"], 0x50)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000280)='kmem_cache_free\x00', 0xffffffffffffffff, 0x0, 0x6}, 0x18)
socket$inet_udplite(0x2, 0x2, 0x88)

3m16.469781928s ago: executing program 1 (id=1897):
r0 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x2, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000b2e900007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r3}, 0x10)
openat(0xffffffffffffff9c, &(0x7f0000000280)='./file1\x00', 0x169142, 0x0)
lsetxattr$security_selinux(&(0x7f0000000380)='./file1\x00', &(0x7f00000003c0), &(0x7f0000000400)='system_u:object_r:udev_exec_t:s0\x00', 0x21, 0x0)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000100), r1)
ioctl$IOCTL_GET_NCIDEV_IDX(r0, 0x0, &(0x7f00000000c0)=<r5=>0x0)
sendmsg$NFC_CMD_DEV_UP(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)={0x1c, r4, 0x1, 0x70bd26, 0x23c, {}, [@NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r5}]}, 0x1c}}, 0x0)
write$nci(r0, 0x0, 0x0)
bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x48)
close(0x3)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000240)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000005000000b703000000000000850000007200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)

3m16.089228094s ago: executing program 1 (id=1902):
mkdir(&(0x7f0000002880)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000100)='./file0\x00', &(0x7f0000000180)='./file0\x00', 0x0, 0x1adc51, 0x0)
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r0, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)
chroot(&(0x7f00000001c0)='./file0/../file0/../file0\x00')
umount2(&(0x7f0000000240)='./file0/../file0/../file0\x00', 0x0)

3m15.909302351s ago: executing program 1 (id=1905):
r0 = mq_open(&(0x7f0000000480)='!sel\x00\x00\x00\x10\x00\x00\x00\x00\xd7\\P\xc1\xde.O\xcb]0y\x00\x00\x00\x00\x00\x00\x00\x00', 0x6e93ebbbcc0884f2, 0x196, &(0x7f0000000440)={0x2000000000002000, 0x1, 0x56, 0x3})
mq_timedsend(r0, 0x0, 0x0, 0x0, 0x0)
mq_timedsend(r0, 0x0, 0x0, 0x0, 0x0)
mq_timedreceive(r0, 0x0, 0x0, 0x100000000000000, 0x0)

3m11.758604252s ago: executing program 1 (id=1945):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x5, 0x4, 0x9c, 0xe, 0x0, 0xffffffffffffffff, 0x7fffffff, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r0, 0x0, 0xfffffffffffffffd}, 0x18)
socket$inet(0x2, 0x4000000000000001, 0x0)

3m11.549574311s ago: executing program 34 (id=1945):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x5, 0x4, 0x9c, 0xe, 0x0, 0xffffffffffffffff, 0x7fffffff, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r0, 0x0, 0xfffffffffffffffd}, 0x18)
socket$inet(0x2, 0x4000000000000001, 0x0)

2m26.491368384s ago: executing program 0 (id=2310):
rt_sigprocmask(0x0, &(0x7f0000000000)={[0xfdfffffffffffffd]}, 0x0, 0x8)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x18, 0x3, &(0x7f0000000080)=@framed, &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='contention_end\x00', r2}, 0x10)
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x9)
ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000000)={0x8080000, 0x1d000, 0x2})
ioctl$KVM_UNREGISTER_COALESCED_MMIO(r1, 0x4010ae68, &(0x7f0000000200)={0xdddd0000, 0xd000, 0x1})

2m25.780382388s ago: executing program 0 (id=2315):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000b40)={0x11, 0x8, &(0x7f00000017c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000)={0xffffffff}, 0x8, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0xffffffffffffff24, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
link(&(0x7f0000000040)='./file0\x00', &(0x7f00000000c0)='./file0\x00')
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
pipe2(&(0x7f0000000000)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x0)
r3 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r3}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
write$P9_RGETLOCK(r2, &(0x7f0000001440)=ANY=[], 0xffffff6a)
pipe2(&(0x7f0000000080)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff}, 0x0)
tee(r1, r5, 0xfffffffffffffc01, 0x0)
tee(r1, r5, 0x60000000000, 0x0)
vmsplice(r4, &(0x7f0000002600)=[{&(0x7f00000002c0)="2a3fbb7c5245e0e3470668cb03bfb6d8c9a459d9d4ddac1fda2f6b89f6895626466fd3db423468d625d6be61ecb7625675615d0e38d85fc46306591b0bf01c9e790ae364728c35c898911248751ead9e65c27544412ff37885fa9a355de5431579aedd34622f230e035a3a9c82d27f55b0b5a838cfa6d7ddbd60bbdc9e4aee8aa0d16b033614f2344161e741b99955d31353fdd2084c50529c2ffde91dc4ad01ab4319a1c70f1d5d6a704965ccbcc43bfedf7768552bdf2a9d028561a258d97d820047f7fcb2d5efaeba399a6b02b24f2f2cfba4aba44564ef90fecbd9fea09bba5e5d2cbab2f031d77f5042c6e07b724bba9979cf038aeb01e881f3617952d15ca0b37a97f08bffce40cc8febb1ebbd792a16cb0a269fe97a268f2d6ada90a7d148060f9d35265d830811823216d5616dbd0a7311c5b84c384a04d3e946398ffe09588f956e31940eb11de635f016bf12565514d731956dc6413b317ee38dd932bad6436e105383277f058c12c19814f4498cf1a9f3ee84b447370dbeabcef5932fee41c68aae02accc72edc927f498c466b2ec15f4312c3ca61882a2d8a612d64b53a9f0d186933edee966d9a5618aefc78829dcaf1d2b0e99933003034298e6b7a746a825f2732ccef1aad84464278d83ad85a93c3beea078d27dd8ba74385d6c742677655a993a5ca1d725fd64106a3c98e0a8cda2d6f206ccbf3db75e62ff876925952b88c26238b242503b3bdc5e706a63c88bda921d45e59b056984e21338eb313e6ef17e127cfcb091fec21f05594013a5f397021fab18311099af168d13996f003bca3b63ee1702dd65dd2bfb8aa84e5ada3bd1fce83cbdd9779941ffced2a759b714dd742e0d3ff134bb567d8b93ab201a2f2eb39309fc1568e7de83c724ce2511c9135a72a824c421024357f03e261a254e110805e77ddee5c56ea3a7cb24794abccabe4eef8ea14f760bd44b9095d8e3490b8dd814474c1cbadb38cdfcea5900bd2185483615038259f34e8ef076ec7f02afd4e8aa8ff5c7cf04f8f886e3999b717d4f87b98c172e8e888b5a3e7d73c7b8f7c93745bf9cd2fe105484dd5fefc62b0c463c6b987c02f25c4276f0bf50745626c5e899549a2ab8bedda66867169d7a884c56df519eb7b9b30f0fdd96d683d3e10e1147d5ae31997c7d6286fbc595256f826feddf118b0bfbd1278c68738b26cb24e4e1797b30363acbae053f3ee6d90a12c977276fc534136c1599ddcef8a18f04035c771982dc8c9e849b31e04678b237c5153c12ebca559c8d3b3694de5e025e5f45926bfeb0004db080d3954bba5cc325eb1c6ef4a5d8c4f8bba2560fb8830cfa806d712e28a8c5aa8efea52c66718b93652608e431ae25c5bfa5dd48847268bc56f5c1d178ed233ccfb6009a82ae7b46d674b7ea5f936aabe49cd8cbc8ad23680a5b65bd4064d4df042e4efa5af6d5b39e1f64fe5ceed7dcaeb90e0df139a6d96c6f9cbf9bd814e9bc98e442e883f4b6927198fe5145418a2b11a3518c1b001fd4b80b13ef1620833654fc301d0d3eb0e96dd2134204b916422fc9686c17754e2f2b9670ed0b833b4c2294fc4d8803d62632b4b70d95aa3611cdca1978f64ff8647c91f3a8484c5747d84bc076b30b00b3ed76dba1e1e6df9840257849975e4ff625d5c202576835fd3c715e1ac1f0766123f7482aab8bf5ffdaaed11db644ffe3c5940736a4a6979f155a6bed2cb2193971a12d84a6345956af18d55a1a05958f7b8ef0c3b5764a94e4b7a75cdfe411e11b16c314d0de6163eadc4eac8ab463c4b4597c58033a36d05ee7959686fc12f7ababdbc914b06474dc129805e7cfeafaea3c1fda95bcd4c708bacc2e7682ddef6ff2f6b3e967045fa918e7f2bc6c9f45873967034a3dc86ec4ad14cfdca3baabebe6999b7b715e01a91bb427e745836f853fd1249789967632f5f474b254e1e7ab2d89cc308173fb9c97ea2212709d2bc15c6d75ea3b129e286b45a1c44d2f4903334aa7b85729ee1d5c1ea185c553d5621f0f581f436cda5dd64ae7cc074b2f07b1e1bdd37ef59e71c797293ea5d2f0dc542e82f65990353ec087db307fbc27538bc81ba2ba40746e0dfcfaf12f0e9153f37eba232acf8a36f6918891df1ad1a16658455f43b28028c315a9ba3e2aa44c1ac7c461815e35f93596ab6fb0a08032a9ff541dfbf6d9266e9f19a2807d7f69dad3848fbf3f621a09790a917a341003cf6dceff5a7b79a5503e3f9733d8d2b0416be3d62637bb5f439a966e024213fd7299fb6ef52264479075c2f245ad1610a926fe705a758d4fa376abfd9ae4a2d4849bc0fc743850853fe62e1a8cc050846bc862e1193e0ce0de7f6e16c9020fc3c0adb3b7756724417af860a2e321e755162361c73c8d7eea4d792cdf36aec1a87561141135869ba3c542615d1a3777c5779fec410ecb17326d151f2d14cc04a59361c32d2c6b5e0057397e2b28e439b846331167f90118c02e84b006f2e2fc072f955fa002c210afae3f29e6e1d540a76468b0ae9541eef186ddd79a319f4e9b9544734f578139e3ca534df06f9466143adfa4fab49b0b33915bcbcbbcbaef21965f7ab8e815ef7bef63930f260aaf9ff392234449ef60304cac1d23a914f4e974553cc137892197aef0254bd2c6f76d79ca9c36a4c5814bdc26fbbe043c59c1ec723bafd4cf529fe7a95e7be795cfdff35e307cd03b400a516e5db0f87c30437a1eb2c9e679e724c7d13bdab60f8a482bc3f8f180e42bd15649d5035d8f0ccdeeb29ed2263d379a9e75617263a533007a9af89ea8abb991983af5b63e02e3a54f44cf6eb40a67ae1d8f288fca3f8e6013094cff40cb93ca45f9fdcb5a72e86d03eeec6891e81e74dfd00a755ac8451b1788b4a20ddd20e6f9960b303211ddf289223c2fa334b2b589b01b7d6c227ca2c9183acde08cbffa6ba683cdac97e7f1dd55825e3b290919308c4dfbd94e0ee39f5082a488734ce50c78f5722af7ab16f739f266f6ca172346f6675c4e4d610eb039b7be206c83572e5960d6eb52f9a06ccee7972c7decefebf5c97c3c84a533957001fbef37ea5b19f23ad8b0f7989e4cc15e8bf74ae0914990069089cb2d71ae5ef4d800a1d92bbf5d3f3e1dc90cfce12732ee13e42bbb47193b1ab173a0b5f4ed22f948b48cdb104a72fc56067ab89c3a966cd6f930f977c65581768f864e6db126e9adc0ea462e8ba6f192d9034f0ec6c1c166640c0dc2a69be1ed42c7fe9065b628f610d26cee0cb040231b70ba7c2c9ae929a981e6295bf32668a9d7559176634bfabb6720caa9de304970c710038d4567383e8d1733e9d2acb1e6502e25eebd7c6053e9389de0923fded6553d78fef185679823fa25365ed7476b9f107fa8e888a7e4bb9e001d9099fc9ce9f75224880e3f5a504daa7b49cf6a5267338011c99c3238b17e4bb6c185372ba53c920f29ea11deb3d9bfac0161e25f978c316f06a87a577a2d3e67b4afa57db4a1c7ea202c622239871ce4a81104143685c77e5dd6b4953008e243d840570a358c28309cf7c89a5474856ec55a9125e56d17cdb666a817038267d4774dfda7d2006c207b0c6295e5b21769665c001d222f1307b741a69236635697aaf871fa10b6b12f38dc652eaa71e2507e14e5571cea5575ca4294e23a1a201e1132284b4e269a60e41755626a84b0f238a970d8d1da1a4f8c8532cc08d31031b52d1e9a53531c12574f647fc8c909a755ed0823f16dc62ca1ff63877e1d90316690e8255d2832bbd88cbc5a9a454f1c9afcbb793eb30f8df1699bfe54bbf42e48f66651444589027004c53c51e20a98b19bd3450e448d15b4b25d5dc3c051b51e2b588e768ec523d6fc72927ac123a6c302fd078b65da7ea84098e57968e17cba9464feb5a354af158954a0851bfeabbf14c4fd3ecafd2a2b8c2eb2f56d66c04775522ac4322f7558aeb088a94d126d6500182a19815e61f87bae3cc0a40f57a783260c1a045645f5cb26d14e7d7c92b25b6c11af04a3d3288090f209babb544cd51b5f0fb825ebe2a03cc4dbb2e075a088c2af99bcd8c04992d840a8981056e4cb837427e0a0dc11f3e93fdacb79ac13a36fe598e4b9d23a4d5f36ebb7d5bae8780878de6e996015cba8e46da7798457ce3ac07aee9e9506d247237a64ee2d4ce46d8289424054f529a8281688a5c6dafadcb67f6a33477ed058af75efc29dd88f71298387437f9a1b4a8158e8f6b08c6696f79ef537aeab7de12e317bdfb33fbf9fe6fede89638ce89ae83324e42b4b25e7cb3236b41d4b48c2061ed0d2bf31f640693ad1da27143d6ae28cb51968212ad5e9b6f5a2351dd3062bb5e7b4c71d0a7ecdcce16c7e8d5a9de8c3dc89b869ac985c92e182b31ba96056da30c055d20966a19dd83440cbf11be5678e2981aedefa00cd2685dc528ab83f46438757c39d3095b006dc53cdac27bdf2c00277b3e4e8a5a33ae7581db78520a3316224a4849d7f9c4913f1afa07b09a7cd0854cfcdd0246333e364a3a9ade3ff8ec68bb7801a89e6144e83ad5c35b2a82b5727d7bdbd3f5da492cdda27f6b1fb26b95bf3f994300a9c7c8b96e24f21787f97188ae0b3629649b3e47efda3c99ee8195d41758bf320d1b10f3a67d87b73809779affa38de990e6b7bcc27e7efa427522d22b2762b11bb382521118514e82968845a043c4eaec7e68ed9729a2da2de6a389379b94c787c1878328f6681edd88d77ca1a120933a65f15bf253f1750a559444dcdaa4d00e691973d7049e572d8dc80699607a46b9a0260ccf9a41152ce4e70f70008bf33fc9cde8a0312618c59b1ec58dcc84a170f67d5cf7be8e8620117a9fad9f102a9fa7fdc234489d49d20c3157f11954d84401d3b72409285c463225429ea2ddfdd891ec504df6e8996df0466147930b345bed59815869cdd4ab8823bf25a31e41ffe80a3c0c467d07c75d2cdfe63df2d14c46eb7d9f6193bd94e397f91935991d030a9c9b027e21171176d712b7b3506e2bf67b7e2818b53e061aee45e1d7dc220d96360a47550fd7749ed2c27fe69f6964502b7f57ac0fa03abc64014cc2ebfd6f14681aa24f3f216988ef69e2a715841af2ac4f613bd97fccc8ccc37690011e7bd0aecfd5a0e723b34d0a5693499dc83b503dce0007668b645980d77a9ff417546c2169d37db30c66b366f9bcde9bfb4d531bab1912fc8484120cef7d6aa952b838df42f6d64acc5ecba8156923683e42bad9b86849b63045e75951ee5b23325b880e82c8e25f913ede4d13224ebfb0662657150bc1fb4cc1d36c704440fe0ba2212a2443c438e9d4c2f3520dbffd41f07569e5b46e40b01df9977519be27b7727b61e575400c109e1a2084d61b8bcc4b4944d735d0ae19f38a324f245041c1b304214141734337e388885a11b5cda67b2a73d889b264b2331a5e126bc2f749212d0999a449b397a9ac35121c72ec50889d6c57f4dee92db30f5d06c2a1e9229f2bf642cce8f311894463bc77047991f5338d714e44ab39a8d62f357e060aa98bcda25ee65145f911ec9f312b3f8ae085cd49b8938647e0f30a3cae95419613bcd4e644917121ca1d6b9ebe909e0dd3c8b984d1a6f84b4511e30074e00e0366a75c3eb0cd0690d3ce0dedf2c258a1dce27194de2d19f77c8625edcd23be31ef8a340ef74631eac0e7d098ea3cd8f26ef21f7e11e2d24a690b5f62a0f11dea9ce9fe47ae2e51a822bc4f41888e7e867bb9563285ee9dac4242b35cbf37b419545e37a992de1e7a0c1a39eb79e22f94adbf0c9589ab0", 0x1000}], 0x1, 0x8)

2m24.10960249s ago: executing program 0 (id=2319):
r0 = socket$inet6(0xa, 0x800000000000002, 0x0)
setsockopt$inet6_int(r0, 0x29, 0x31, &(0x7f0000000000)=0xb2, 0x4)
recvmmsg(r0, 0x0, 0x0, 0x40002042, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
io_uring_enter(0xffffffffffffffff, 0x0, 0x0, 0xf, 0x0, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x3)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
r3 = openat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
fsetxattr$system_posix_acl(r3, &(0x7f0000000000)='system.posix_acl_access\x00', &(0x7f00000001c0)={{}, {0x1, 0x1}, [], {0x4, 0x1}, [], {0x10, 0x2}, {0x20, 0x1}}, 0x24, 0x0)
listen(0xffffffffffffffff, 0x0)
getsockopt$bt_BT_DEFER_SETUP(0xffffffffffffffff, 0x112, 0x7, 0x0, &(0x7f0000000200))

2m23.709949974s ago: executing program 0 (id=2321):
mkdir(&(0x7f0000002880)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
mount$bind(0x0, 0x0, 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000100)='./file0\x00', &(0x7f0000000180)='./file0\x00', 0x0, 0x1adc51, 0x0)
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r0, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)
chroot(&(0x7f00000001c0)='./file0/../file0/../file0\x00')
umount2(&(0x7f0000000240)='./file0/../file0/../file0\x00', 0x0)

2m23.574259584s ago: executing program 0 (id=2322):
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, 0x0}, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = openat$sndseq(0xffffffffffffff9c, 0x0, 0x42002)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r1, 0xc08c5332, &(0x7f00000003c0)={0x0, 0x2000000, 0x0, 'queue1\x00'})
write$sndseq(r1, &(0x7f0000000000)=[{0x84, 0x77, 0x0, 0x0, @tick, {}, {}, @raw32}], 0xffc8)
close_range(r0, 0xffffffffffffffff, 0x0)

2m22.515385414s ago: executing program 0 (id=2324):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f0000000000)=0x100000001, 0x4)
connect$inet6(r0, &(0x7f0000000100)={0xa, 0x0, 0xfffffffe, @loopback}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r0, 0x6, 0x1f, &(0x7f00000000c0), 0x4)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r1}, 0x10)
setsockopt$inet6_tcp_TLS_TX(r0, 0x11a, 0x1, &(0x7f0000003100)=@gcm_128={{0x304}, "0400", "0dd12f0d004fcf0000e8bfff1a8600", "cf0f00", "8657e2b7e63b34e4"}, 0x28)
write$binfmt_script(r0, &(0x7f0000001300), 0x8f)
recvmmsg(r0, 0x0, 0x0, 0x40000002, 0x0)
writev(r0, &(0x7f00000030c0)=[{&(0x7f0000000a40)="fb", 0x1}], 0x1)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000040)=0x1, 0x4)
getsockopt$inet6_tcp_TCP_ZEROCOPY_RECEIVE(r0, 0x6, 0x23, &(0x7f00000013c0)={&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000001380)=0x40)
writev(r0, &(0x7f0000000080)=[{&(0x7f0000000380)="ac", 0x1}], 0x1)

2m20.93165998s ago: executing program 35 (id=2324):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f0000000000)=0x100000001, 0x4)
connect$inet6(r0, &(0x7f0000000100)={0xa, 0x0, 0xfffffffe, @loopback}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r0, 0x6, 0x1f, &(0x7f00000000c0), 0x4)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r1}, 0x10)
setsockopt$inet6_tcp_TLS_TX(r0, 0x11a, 0x1, &(0x7f0000003100)=@gcm_128={{0x304}, "0400", "0dd12f0d004fcf0000e8bfff1a8600", "cf0f00", "8657e2b7e63b34e4"}, 0x28)
write$binfmt_script(r0, &(0x7f0000001300), 0x8f)
recvmmsg(r0, 0x0, 0x0, 0x40000002, 0x0)
writev(r0, &(0x7f00000030c0)=[{&(0x7f0000000a40)="fb", 0x1}], 0x1)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000040)=0x1, 0x4)
getsockopt$inet6_tcp_TCP_ZEROCOPY_RECEIVE(r0, 0x6, 0x23, &(0x7f00000013c0)={&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000001380)=0x40)
writev(r0, &(0x7f0000000080)=[{&(0x7f0000000380)="ac", 0x1}], 0x1)

1m47.735319813s ago: executing program 8 (id=2527):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, 0x0, &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000100)='kfree\x00', r0}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="180000000020000000000000f9ffff0b85000000ae000000850000000700000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000400)=[{{0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000080)="c14a8cf012b79241197fa55c95cb78c868dc7f4065db6a1f55fdb9b3b620905db1150adbd5a48a5968dce0ca0c3b439a84136af4f91b835cf51a0b762c624ee970f63316960a1c5a1e36e766cf0fbb9676e41671fbe2c846cae88f54cd08de9d971d8205b0f52c3dc829935ceb9b6f73bf7cacade0e52ab90b160f562cc866b026c1261b336312bd662d41d1b80d8141466b9092866d89534e4425d9f046c0f047516825d6671ed32c121c5aa880c9759fb464a544c710dec4bd5b3663332c9310983127de7a7c3e9253a76a0a63", 0xce}], 0x1, 0x0, 0x0, 0x4024814}}], 0x1, 0x48044)
syz_clone3(&(0x7f0000000a40)={0x200000, &(0x7f0000000800), &(0x7f0000000840)=<r1=>0x0, &(0x7f0000000880), {0x19}, &(0x7f00000008c0)=""/207, 0xcf, &(0x7f00000009c0)=""/35, 0x0}, 0x58)
prlimit64(r1, 0xf, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
r2 = socket$can_bcm(0x1d, 0x2, 0x2)
sendmsg$can_bcm(r2, 0x0, 0x0)
sendmsg$can_bcm(r2, 0x0, 0x48080)
timer_settime(0x0, 0x236bd4336e4642df, 0x0, 0x0)
mount_setattr(0xffffffffffffffff, 0x0, 0x100, 0x0, 0x0)
syz_usb_connect(0x0, 0x36, &(0x7f00000000c0)=ANY=[@ANYBLOB="120100008010bd40820514009dbb0000000109022400011b00000009040000022a3e740009058bff7f0000100109050b362f"], 0x0)
r3 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000240), 0xc2882, 0x0)
syz_open_dev$midi(&(0x7f0000000000), 0x3, 0x4a243)
close(r3)

1m44.091060999s ago: executing program 8 (id=2541):
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
sendmsg$inet6(r0, &(0x7f0000002280)={&(0x7f0000001e40)={0xa, 0x4e24, 0x0, @mcast1}, 0x1c, 0x0, 0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="b005"], 0x5b0}, 0x20008001)
sendmsg$inet6(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000180)=[{&(0x7f00000022c0)="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", 0xb43}], 0x1}, 0x20000044)

1m43.897606195s ago: executing program 8 (id=2542):
r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2040, 0x0)
fcntl$lock(r0, 0x26, 0x0)
r1 = userfaultfd(0x801)
ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f00000000c0)={0xaa, 0x508})
ioctl$BTRFS_IOC_BALANCE(r1, 0x8010aa02, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
io_uring_enter(0xffffffffffffffff, 0x0, 0x0, 0xf, 0x0, 0x0)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
syz_clone(0x2084200, 0x0, 0x0, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
ioctl$TCSETS(0xffffffffffffffff, 0x40045431, &(0x7f0000000dc0)={0x0, 0x0, 0x0, 0x0, 0x0, "0062ba7d82000000000000000000f7ffffff00"})
r4 = syz_open_pts(0xffffffffffffffff, 0x0)
r5 = dup(r4)
ioctl$TIOCSETD(r5, 0x5423, &(0x7f00000000c0)=0x3)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r6=>0xffffffffffffffff})
connect$unix(r6, &(0x7f000057eff8)=@abs={0x1, 0x0, 0x4e20}, 0x6e)
pselect6(0x40, &(0x7f0000000040)={0x0, 0x0, 0xbf9, 0x401, 0x0, 0x2000000000000, 0x0, 0x2}, &(0x7f0000000100)={0x1f, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x0, 0x0, 0x0)

1m43.518970913s ago: executing program 7 (id=2544):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, 0x0, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000000c0)='sys_enter\x00', r1}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r2 = syz_open_dev$cec(&(0x7f0000000000), 0x0, 0x180)
ioctl$CEC_ADAP_S_LOG_ADDRS(r2, 0xc05c6104, &(0x7f00000000c0)={"0e00", 0x0, 0x6, 0x2, 0x0, 0x0, "f700", '\x00\x00\a\x00', "0300", "fcffffff", ["50d5c2a7c5ae5cace40000b6", "808e88e2e9ffffffffff00", "0c436d743c97c443084000", "ff81000000008000"]})
ioctl$CEC_TRANSMIT(r2, 0xc0386105, &(0x7f0000000040)={0x7, 0x1, 0x5, 0x3ae9, 0xc7, 0x4, "02f8ffff070000fbb4883d45f400", 0x8, 0xae, 0x6, 0x8, 0x2, 0x0, 0x40})
ioctl$CEC_ADAP_S_LOG_ADDRS(r2, 0xc05c6104, &(0x7f0000001480)={"8f00fe56", 0xffff, 0x1, 0xfb, 0x101, 0xc, "636a40d58c2696d3c8c477c69a28b5", "033a8c12", "e63b0270", "312cb81b", ["feee5ddc013b862f1e45d646", "25d0973615d58aa6a3cc9fe1", "e7096561749b4462b2856ff8", "437ce95c1e6f99944cbc7788"]})
r3 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$IP_VS_SO_SET_ADD(r3, 0x0, 0x482, &(0x7f0000000040)={0x100000011, @multicast2, 0x0, 0x0, 'nq\x00', 0x0, 0x1000, 0x47}, 0x2c)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000004c0)=@newtaction={0x64, 0x30, 0xb, 0x0, 0x0, {}, [{0x50, 0x1, [@m_ct={0x4c, 0x1, 0x0, 0x0, {{0x7}, {0x24, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0xfdb}}, @TCA_CT_ZONE={0x6, 0x4, 0x9}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0x64}, 0x1, 0x0, 0x0, 0x4004000}, 0x10000000)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000400), 0xffffffffffffffff)
sendmsg$TIPC_NL_KEY_SET(r5, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)=ANY=[@ANYBLOB='T\x00\x00\x00', @ANYRES16=r6, @ANYBLOB="0100000000000000000003000000400001802c0004001400010002000000ac1414aa00000000000000001400020002000000e000000200000000000004000d0001007564703a73"], 0x54}}, 0x0)
rt_sigprocmask(0x0, &(0x7f0000000000)={[0xfffffffffffffffd]}, 0x0, 0x8)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)
r7 = syz_open_dev$vcsa(&(0x7f00000001c0), 0x10001, 0xc3)
ioctl$TIOCL_PASTESEL(r7, 0x541c, &(0x7f0000000300))
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r8 = getpid()
sendmsg$kcm(r7, &(0x7f0000000480)={&(0x7f0000000340)=@l2tp={0x2, 0x0, @empty, 0x4}, 0x80, 0x0, 0x0, &(0x7f0000000840)=[{0x40, 0xff, 0xfffffffb, "bab63e5262581a7adf639b11c39332ba1c58f8000930d2d104ad84650211047a50a558b49ba0b2aceca3238331a59307650b"}], 0x40}, 0x20008844)
sched_setscheduler(r8, 0x2, &(0x7f0000000180)=0x4)
setpgid(0x0, 0x0)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000280)={0x0, 0x8, 0x10}, 0xc)
bind$inet6(r0, 0x0, 0x0)
sendto$inet6(r0, &(0x7f0000847fff)='X', 0xfee4, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)

1m42.667046163s ago: executing program 8 (id=2545):
mkdir(&(0x7f0000002880)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000100)='./file0\x00', &(0x7f0000000180)='./file0\x00', 0x0, 0x1adc51, 0x0)
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r0, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)
chroot(0x0)
umount2(&(0x7f0000000240)='./file0/../file0/../file0\x00', 0x0)

1m41.339296832s ago: executing program 7 (id=2550):
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x123f41, 0x0)
io_setup(0xb0, 0x0)
syz_open_dev$video4linux(&(0x7f0000000280), 0x2, 0x101000)
socket$nl_netfilter(0x10, 0x3, 0xc)
socket$vsock_stream(0x28, 0x1, 0x0)
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000800000000bf91000000000000b702000043e7b5538500000085000000b70000000000000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='kmem_cache_free\x00', r1}, 0x10)
pselect6(0x40, &(0x7f00000001c0)={0x0, 0x0, 0x3, 0xfffffffffffffffd}, 0x0, &(0x7f00000002c0)={0x3ff, 0x0, 0x0, 0x9, 0x0, 0x0, 0x7fffffff}, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x9, 0xa0c}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x0, 0x0)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)

1m41.01896931s ago: executing program 8 (id=2553):
syz_open_dev$sndctrl(0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x1, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
write$cgroup_int(0xffffffffffffffff, &(0x7f0000000000)=0x400, 0x8)
r1 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000200), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f0000000240)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000300)={<r2=>0xffffffffffffffff}, 0x2, 0xb}}, 0x20)
write$RDMA_USER_CM_CMD_RESOLVE_ADDR(r1, &(0x7f0000000000)={0x15, 0x110, 0xfa08, {r2, 0x0, 0x10, 0x10, 0x0, @in={0x2, 0x4e20, @empty}, @in={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x1c}}}}, 0x118)
syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x10200)
r3 = gettid()
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r4 = userfaultfd(0x80001)
r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0)
write$RDMA_USER_CM_CMD_SET_OPTION(r1, &(0x7f00000002c0)={0xe, 0x18, 0xfa00, @id_tos={&(0x7f0000000280)=0x5, r2, 0x0, 0x0, 0x1}}, 0x20)
ioctl$UFFDIO_API(r4, 0xc018aa3f, &(0x7f00000000c0)={0xaa, 0x749})
ioctl$UFFDIO_REGISTER(r4, 0xc020aa00, &(0x7f0000000200)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x1})
madvise(&(0x7f00008d7000/0x1000)=nil, 0x1000, 0x4)
mremap(&(0x7f00002c6000/0x3000)=nil, 0x3000, 0x2000, 0x0, &(0x7f0000ffe000/0x2000)=nil)
readv(r4, &(0x7f0000000040)=[{&(0x7f0000000180)=""/80, 0x50}], 0x7)
sigaltstack(&(0x7f0000000480)={&(0x7f0000002340)=""/4126, 0x80000001, 0x101e}, 0x0)
sendmsg$AUDIT_TTY_GET(0xffffffffffffffff, 0x0, 0x80)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xf, 0x4008032, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
rt_sigqueueinfo(r3, 0x21, &(0x7f0000000100)={0x1f})
socket$inet_udp(0x2, 0x2, 0x0)
r6 = dup(r0)
write$6lowpan_enable(r6, &(0x7f0000000100)='0', 0x1)
ioctl$IOCTL_VMCI_INIT_CONTEXT(0xffffffffffffffff, 0x7a0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0)
io_uring_enter(0xffffffffffffffff, 0x3516, 0x0, 0x0, 0x0, 0x0)

1m39.893512402s ago: executing program 7 (id=2557):
socket$inet6_tcp(0xa, 0x1, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="180000000000060000000000000000008500000007000000850000000e00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x3, @void, @value}, 0x94)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000))
socket$packet(0x11, 0x3, 0x300)
socket$rds(0x15, 0x5, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000080)='kfree\x00', r1, 0x0, 0xfffffffffffffffa}, 0x18)
bpf$MAP_CREATE(0x0, &(0x7f0000000380)=ANY=[@ANYBLOB="12000000070000000400000002"], 0x50)
socket$inet_dccp(0x2, 0x6, 0x0)
socket$xdp(0x2c, 0x3, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r2 = socket$inet_udplite(0x2, 0x2, 0x88)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000013c0)=ANY=[@ANYBLOB="640000001000030400"/20, @ANYRES32=0x0, @ANYBLOB="e5fda988000000002800128009000100766c616e00000000180002800c0002001c0000001f000000060001000000000008000500", @ANYRES32=r2, @ANYBLOB='\b\x00\n\x00', @ANYRES32, @ANYBLOB="0a000100000070"], 0x64}}, 0x0)

1m39.834581737s ago: executing program 8 (id=2559):
syz_open_dev$sndctrl(0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r1 = dup(r0)
write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd74)
ioctl$IOCTL_VMCI_INIT_CONTEXT(0xffffffffffffffff, 0x7a0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0)
io_uring_enter(0xffffffffffffffff, 0x3516, 0x0, 0x0, 0x0, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, 0x0, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
pipe(&(0x7f0000000080)={<r4=>0xffffffffffffffff})
splice(r4, 0x0, r3, 0x0, 0x1000, 0x0)
r5 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff7ffc}]})
close_range(r5, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, 0x0)

1m39.58817843s ago: executing program 36 (id=2559):
syz_open_dev$sndctrl(0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r1 = dup(r0)
write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd74)
ioctl$IOCTL_VMCI_INIT_CONTEXT(0xffffffffffffffff, 0x7a0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0)
io_uring_enter(0xffffffffffffffff, 0x3516, 0x0, 0x0, 0x0, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, 0x0, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
pipe(&(0x7f0000000080)={<r4=>0xffffffffffffffff})
splice(r4, 0x0, r3, 0x0, 0x1000, 0x0)
r5 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff7ffc}]})
close_range(r5, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, 0x0)

1m39.246117973s ago: executing program 7 (id=2563):
mkdir(&(0x7f0000002880)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000100)='./file0\x00', &(0x7f0000000180)='./file0\x00', 0x0, 0x1adc51, 0x0)
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r0, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)
chroot(0x0)
umount2(&(0x7f0000000240)='./file0/../file0/../file0\x00', 0x0)

1m38.960497591s ago: executing program 7 (id=2564):
r0 = socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f0000000000)={0xfffffffb, 0x1}, 0x10)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000000c0)=ANY=[@ANYBLOB="2c00000012009703079ce3b73f819e5907000000"], 0x2c}, 0x1, 0x0, 0x0, 0x40010}, 0x80)

1m38.486751516s ago: executing program 7 (id=2568):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000180), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_802154(r0, 0x8933, &(0x7f00000001c0)={'wpan0\x00', <r2=>0x0})
sendmsg$NL802154_CMD_NEW_SEC_KEY(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000000)=ANY=[@ANYBLOB='|\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="3f9d00000000000000001700000008000300", @ANYRES32=r2, @ANYBLOB="60003080050002000000000014000400403a050c5bae9c544ef2b6d713459a7a1c000180"], 0x7c}}, 0x0)

1m38.33694803s ago: executing program 37 (id=2568):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000180), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_802154(r0, 0x8933, &(0x7f00000001c0)={'wpan0\x00', <r2=>0x0})
sendmsg$NL802154_CMD_NEW_SEC_KEY(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000000)=ANY=[@ANYBLOB='|\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="3f9d00000000000000001700000008000300", @ANYRES32=r2, @ANYBLOB="60003080050002000000000014000400403a050c5bae9c544ef2b6d713459a7a1c000180"], 0x7c}}, 0x0)

14.183537466s ago: executing program 4 (id=3045):
pipe2(&(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
r2 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r2}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
write$P9_RGETLOCK(r1, &(0x7f0000001440)=ANY=[], 0xffffff6a)
pipe2(&(0x7f0000000080)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff}, 0x0)
tee(r0, r4, 0xfffffffffffffc01, 0x0)
tee(r0, r4, 0x60000000000, 0x0)
vmsplice(r3, &(0x7f0000002600)=[{&(0x7f00000002c0)="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", 0xe00}], 0x1, 0x8)

12.870911191s ago: executing program 4 (id=3048):
r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2040, 0x0)
fcntl$lock(r0, 0x26, 0x0)
r1 = userfaultfd(0x801)
ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f00000000c0)={0xaa, 0x508})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
io_uring_enter(0xffffffffffffffff, 0x0, 0x0, 0xf, 0x0, 0x0)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
syz_clone(0x2084200, 0x0, 0x0, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
r4 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$TCSETS(r4, 0x40045431, &(0x7f0000000dc0)={0x0, 0x0, 0x0, 0x0, 0x0, "0062ba7d82000000000000000000f7ffffff00"})
r5 = syz_open_pts(r4, 0x0)
r6 = dup(r5)
ioctl$TIOCSETD(r6, 0x5423, &(0x7f00000000c0)=0x3)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r7=>0xffffffffffffffff})
connect$unix(r7, &(0x7f000057eff8)=@abs={0x1, 0x0, 0x4e20}, 0x6e)
pselect6(0x40, &(0x7f0000000040)={0x0, 0x0, 0xbf9, 0x401, 0x0, 0x2000000000000, 0x0, 0x2}, &(0x7f0000000100)={0x1f, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x0, 0x0, 0x0)

12.778000948s ago: executing program 2 (id=3049):
rseq(&(0x7f00000004c0), 0x20, 0x0, 0x0)
r0 = socket$inet(0x2, 0x3, 0x6)
shutdown(r0, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f0000000040)='oom_score_adj\x00')
capset(&(0x7f0000000080)={0x20071026}, &(0x7f0000000040)={0x200000, 0x200000})
write$cgroup_int(r1, &(0x7f0000000080)=0x1, 0x12)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000340)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'lo\x00'})
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x20044040)
recvmmsg(r0, &(0x7f0000000180), 0x0, 0x0, 0x0)
mknod(0x0, 0x8001420, 0x9)
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./bus\x00', 0x0)
mount$bpf(0x0, &(0x7f0000000d40)='./bus\x00', &(0x7f0000000d80), 0x2000444, &(0x7f0000000180)=ANY=[])
r3 = fsopen(&(0x7f0000000080)='tmpfs\x00', 0x0)
r4 = socket$inet(0xa, 0x801, 0x84)
connect$inet(r4, &(0x7f0000004cc0)={0x2, 0x1, @multicast2}, 0x10)
listen(r4, 0x8)
r5 = accept4(r4, 0x0, 0x0, 0x0)
sendto$inet(r5, &(0x7f0000000240)="2a894b", 0x3, 0xc090, 0x0, 0x0)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r5, 0x84, 0x7b, &(0x7f0000000140)={0x0, 0x1}, 0x8)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r5, 0x84, 0x7b, &(0x7f0000000100)={0x0, 0x2}, 0x8)
r6 = fsmount(r1, 0x1, 0x87)
setuid(0xee01)
fsconfig$FSCONFIG_CMD_RECONFIGURE(r3, 0x7, 0x0, 0x0, 0x0)
open$dir(&(0x7f0000000240)='./file0\x00', 0x149800, 0x1)
dup3(r6, r3, 0x80000)

11.896092349s ago: executing program 4 (id=3050):
sendmsg$NLBL_MGMT_C_REMOVE(0xffffffffffffffff, &(0x7f0000000d80)={0x0, 0x0, &(0x7f0000000d40)={&(0x7f0000000000)=ANY=[@ANYBLOB='\x00\x00\f\x00', @ANYRES16=0x0, @ANYBLOB="010200000000ffdbdf2502"], 0x14}, 0x1, 0x0, 0x0, 0x50}, 0x0)
ioctl$UFFDIO_API(0xffffffffffffffff, 0xc018aa3f, &(0x7f00000000c0)={0xaa, 0x749})
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1)
ioctl$UFFDIO_REGISTER(0xffffffffffffffff, 0xc020aa00, &(0x7f0000000000)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x1})

10.557304799s ago: executing program 4 (id=3057):
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0xb, 0x31, 0xffffffffffffffff, 0x0)
syz_open_dev$vcsu(&(0x7f00000000c0), 0x0, 0x440200)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x19)
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3)
shutdown(r0, 0x0)
recvmmsg(r0, &(0x7f00000055c0), 0x400023c, 0x300, 0x0)
mbind(&(0x7f00001fa000/0x2000)=nil, 0x2000, 0x1, 0x0, 0x0, 0x0)
r1 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_UMEM_REG(r1, 0x11b, 0x4, &(0x7f0000000080)={&(0x7f0000000000)=""/59, 0x304000, 0x800, 0x0, 0x3}, 0x20)
madvise(&(0x7f0000000000/0x600000)=nil, 0x60000b, 0x9)
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x0, 0x2)
shmctl$SHM_INFO(0x0, 0xe, &(0x7f0000004440)=""/5)

9.427469308s ago: executing program 9 (id=3065):
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r1 = syz_open_dev$MSR(0x0, 0x0, 0x0)
read$msr(r1, &(0x7f0000032680)=""/102400, 0x19000)
r2 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000080)='/sys/power/mem_sleep', 0x151440, 0x1)
ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3)
recvmsg(r3, &(0x7f0000000640)={&(0x7f0000000180)=@caif=@dgm, 0x80, &(0x7f0000000580)=[{&(0x7f0000000100)=""/33, 0x21}, {0x0}, {&(0x7f0000000280)=""/108, 0x6c}, {0x0}, {&(0x7f0000000340)=""/140, 0x8c}, {0x0}], 0x6, &(0x7f0000001480)=""/4096, 0x1000}, 0x10002)
connect$packet(r3, &(0x7f0000000000)={0x1f, 0xf8, 0x0, 0x1, 0x2, 0x6, @broadcast}, 0x14)
shutdown(r3, 0x1)

7.595635764s ago: executing program 9 (id=3069):
socket$nl_netfilter(0x10, 0x3, 0xc)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
mkdir(&(0x7f0000000180)='./file0\x00', 0x0)
mount$tmpfs(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000000), 0x0, 0x0)
syz_emit_ethernet(0x4a, &(0x7f00000001c0)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaaaa86dd608a37f200142c00fe8000000000000000000000000000bbfe8000000000000000000000000000aa0000ff", @ANYRES32=0x41424344, @ANYRES32=0x41424344, @ANYBLOB="6a3bdd4afca8fe53e53dca63e35fe669cdff714f5680d78507bdb5f7082e083b807439340d125316fc711251192b1193224770b86ad8a2b4bdc1ef8387addb6ef00a9079d57eaa2b9310cb7caa1b402388f8be7f5ccfe3600f66"], 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x70bd2b, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7b, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000380)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$netlink(0x10, 0x3, 0x0)
madvise(&(0x7f0000907000/0x1000)=nil, 0x1000, 0xb)
bpf$OBJ_GET_MAP(0x7, &(0x7f0000000180)=@o_path={&(0x7f0000000000)='./file1\x00', 0x0, 0x4010, r3}, 0x14)
r4 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f00000002c0)=@newlink={0x44, 0x10, 0x503, 0x0, 0x25dfdbfb, {0x0, 0x0, 0x0, 0x0, 0x14e15, 0x28812}, [@IFLA_LINKINFO={0x18, 0x12, 0x0, 0x1, @erspan={{0xb}, {0x8, 0x2, 0x0, 0x1, [@IFLA_GRE_COLLECT_METADATA={0x4}]}}}, @IFLA_ADDRESS={0xa, 0x1, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x3e}}]}, 0x44}}, 0x20040840)
syz_open_dev$usbfs(&(0x7f0000000240), 0xb, 0x101301)
r5 = syz_open_dev$usbfs(&(0x7f00000000c0), 0x1ff, 0x1501)
ioctl$USBDEVFS_SETCONFIGURATION(r5, 0x80045505, &(0x7f0000000000)=0x1)
r6 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r6, 0xae60)
ioctl$KVM_CREATE_PIT2(r6, 0x4040ae77, &(0x7f0000000040))
r7 = socket$inet6_udplite(0xa, 0x2, 0x88)
getsockopt$inet6_int(r7, 0x29, 0x21, 0x0, &(0x7f0000000040))

6.743289836s ago: executing program 5 (id=3072):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r1 = dup(r0)
write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c)
r2 = syz_io_uring_setup(0x4e1, &(0x7f0000000380)={0x0, 0x1ffffa, 0x10100, 0x3, 0x0, 0x0, r1}, &(0x7f0000000180)=<r3=>0x0, &(0x7f00000001c0)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x2, 0x0, @fd_index=0x4, 0x0, 0x0, 0x0, {}, 0x1})
io_uring_enter(r2, 0x708, 0x41e3, 0x0, 0x0, 0x0)
r5 = socket(0x40000000015, 0x5, 0x0)
connect$inet(r5, &(0x7f0000000040)={0x2, 0x4e1c, @rand_addr=0x64010102}, 0x10)
readv(r5, &(0x7f0000000880)=[{&(0x7f0000000400)=""/50, 0x32}], 0x1)
bind$inet(r5, &(0x7f0000000340)={0x2, 0x0, @loopback}, 0x57)
r6 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r6, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r7 = socket(0x400000000010, 0x3, 0x0)
sendmsg$nl_route_sched(r7, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000280)=@newtfilter={0x44, 0x2c, 0xd27, 0x70bd28, 0x8000, {0x0, 0x0, 0x0, 0x0, {0x5, 0x7}, {}, {0xffe0, 0x2}}, [@filter_kind_options=@f_u32={{0x8}, {0x18, 0x2, [@TCA_U32_FLAGS={0x8, 0xb, 0x1}, @TCA_U32_POLICE={0x4}, @TCA_U32_CLASSID={0x8, 0x1, {0x4, 0xe}}]}}]}, 0x44}, 0x1, 0x0, 0x0, 0x200c0e9}, 0x44)
r8 = socket(0x400000000010, 0x3, 0x0)
r9 = socket$unix(0x1, 0x5, 0x0)
ioctl$sock_SIOCGIFINDEX(r9, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r10=>0x0})
sendmsg$nl_route_sched(r8, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r10, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x0, 0xf}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r8, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000740)=@newtfilter={0x4c, 0x2c, 0xd27, 0x70bd28, 0x0, {0x0, 0x0, 0x0, r10, {0x0, 0xfff1}, {}, {0x7}}, [@filter_kind_options=@f_flower={{0xb}, {0x1c, 0x2, [@TCA_FLOWER_KEY_VLAN_ID={0x6, 0x17, 0x5ae}, @TCA_FLOWER_KEY_IP_TOS={0x5, 0x49, 0x5}, @TCA_FLOWER_KEY_MPLS_TTL={0x5, 0x43, 0x10}]}}]}, 0x4c}, 0x1, 0x0, 0x0, 0x20040000}, 0x20000800)
sendmsg$xdp(r8, &(0x7f0000000100)={0x0, 0x0, 0x0, 0xfffffe10}, 0x20000000)
socket$inet_udp(0x2, 0x2, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, <r11=>0xffffffffffffffff})
r12 = socket$inet_dccp(0x2, 0x6, 0x0)
getsockopt$inet_int(r12, 0x10d, 0x9b, &(0x7f00000001c0), &(0x7f0000000080)=0x4)
sendmmsg$unix(r11, 0x0, 0x0, 0x0)
bind$unix(r11, &(0x7f0000000000)=@abs={0x0, 0x0, 0x4e21}, 0x6e)

6.549662836s ago: executing program 9 (id=3073):
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}})
read$FUSE(r0, &(0x7f00000021c0)={0x2020, 0x0, <r1=>0x0}, 0x2020)
write$FUSE_INIT(r0, &(0x7f0000004200)={0x50, 0x0, r1, {0x7, 0x29, 0x0, 0xffffffff85000014, 0x4, 0x7, 0x0, 0x0, 0x0, 0x0, 0x1}}, 0x50)
r2 = openat$dir(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x4b)
syz_fuse_handle_req(r0, &(0x7f00000042c0), 0x2000, &(0x7f00000062c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000006380)={0x20, 0x0, 0x0, {0x0, 0x8}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
ioctl$FS_IOC_FSSETXATTR(r2, 0x401c5820, &(0x7f0000000040)={0xcdb, 0x2, 0x0, 0x1, 0x7})

5.933979897s ago: executing program 9 (id=3074):
r0 = socket$packet(0x11, 0x3, 0x300)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x10, &(0x7f00000000c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x8, 0xa2, &(0x7f0000000140)=""/162, 0x41000, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2)
r4 = syz_open_dev$I2C(&(0x7f0000003000), 0x0, 0x0)
ioctl$I2C_SMBUS(r4, 0x720, &(0x7f0000003080)={0x1, 0x0, 0x6, &(0x7f0000003040)={0x0, "f4e1a230be8f46463fb1a5f1b44f44eaa65e485b747aa95df8c01eaf07677d18bc"}})
rseq(&(0x7f00000004c0), 0x20, 0x0, 0x0)
r5 = socket$inet_udp(0x2, 0x2, 0x0)
getsockopt$EBT_SO_GET_INFO(r5, 0x0, 0x80, &(0x7f00000002c0)={'filter\x00', 0x88, 0x0, 0x0, [0x5, 0xfffffbfe, 0xffff0000, 0xae, 0x401, 0x8]}, &(0x7f0000000280)=0x50)
shutdown(r5, 0x1)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r6 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='fdinfo/3\x00')
getsockopt$inet6_udp_int(r6, 0x11, 0xa, 0x0, &(0x7f0000000080))
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000d40)=ANY=[@ANYBLOB="18000000000000000000000000000000850000007b000000180100002020642500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007000000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f00000005c0)='sys_enter\x00', r7}, 0x10)
syz_emit_vhci(&(0x7f0000000640)=ANY=[], 0xd)
ioctl$sock_SIOCGIFINDEX(r0, 0x89a0, &(0x7f0000000040)={'syzkaller0\x00'})

5.147464383s ago: executing program 5 (id=3075):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40201, 0x0)
sendto$inet(0xffffffffffffffff, &(0x7f00000000c0)="8689d46205a34197bf2bbe11a5ce7839edaf02afe39ead95913e9c4f8cf31440006769ebdf12cfacae8e8c03f5db079da7d9ecda75e2a7", 0x37, 0x0, 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000380)={'syzkaller1\x00', 0xc201})
r1 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x3}})
write$tun(r0, &(0x7f00000000c0)=ANY=[@ANYBLOB="001c86dd2000100000004000000060ec97000fc83c00fe8000000000000000000000000000aaff020000000000000000000000000001"], 0xffe)

4.910368921s ago: executing program 6 (id=3076):
r0 = syz_io_uring_setup(0x82e, &(0x7f00000005c0)={0x0, 0x20000020, 0x10100, 0x1, 0xfffffffd}, &(0x7f0000000100)=<r1=>0x0, &(0x7f0000000380)=<r2=>0x0)
io_uring_register$IORING_REGISTER_PBUF_RING(r0, 0x16, &(0x7f0000000000)={&(0x7f0000001000)={[{0x0}, {0x0}, {0x0}, {0x0}]}, 0x4}, 0x1)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x9, 0xe, &(0x7f0000000a40)=ANY=[@ANYBLOB="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"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x59, '\x00', 0x0, @fallback=0x27, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r3 = syz_init_net_socket$nfc_raw(0x27, 0x5, 0x0)
openat$ipvs(0xffffff9c, &(0x7f0000000300)='/proc/sys/net/ipv4/vs/conntrack\x00', 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0xf, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9, 0x11e41e7a, 0x5, 0xfffffffc, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x3, 0x1}}}}, @m_ife={0xffffffffffffff2f, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0x21}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
write$UHID_CREATE(0xffffffffffffffff, &(0x7f0000000240)={0x0, {'syz1\x00', 'syz0\x00', 'syz0\x00', &(0x7f0000000040)=""/2, 0x2, 0x0, 0x3, 0x0, 0x0, 0xc08}}, 0x120)
readv(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
syz_io_uring_submit(r1, r2, &(0x7f00000001c0)=@IORING_OP_RECVMSG={0xa, 0x20, 0x0, r3, 0x0, &(0x7f00000002c0)={0x0, 0x0, 0x0}, 0x0, 0x60})
io_uring_enter(r0, 0x5b43, 0x8200, 0x0, 0x0, 0x0)

4.896670543s ago: executing program 5 (id=3077):
socket$nl_netfilter(0x10, 0x3, 0xc)
epoll_create(0x208000)
syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x70bd2a, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{0x0, 0x0, 0xffffffffffffffff, 0x4}}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r0 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_int(r0, 0x29, 0x1d, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0)
openat$vim2m(0xffffff9c, 0x0, 0x2, 0x0)
r4 = socket$alg(0x26, 0x5, 0x0)
r5 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000040), 0x161042, 0x0)
ioctl$PPPIOCNEWUNIT(r5, 0xc004743e, &(0x7f0000000140))
ioctl$PPPIOCSPASS(r5, 0x40107447, 0x0)
bind$alg(r4, &(0x7f0000000080)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-twofish-3way\x00'}, 0x58)
r6 = syz_open_dev$vim2m(&(0x7f00000002c0), 0x1000001000001, 0x2)
ioctl$vim2m_VIDIOC_S_CTRL(r6, 0xc008561c, &(0x7f0000000000)={0x980914, 0x8})
setsockopt$ALG_SET_KEY(r4, 0x117, 0x1, &(0x7f0000c18000)="ad56b6c5910fae9d6dcd3292ea54c7b6ef915d564c90c200", 0x18)
r7 = accept4(r4, 0x0, 0x0, 0x0)
sendmsg$TIPC_NL_MEDIA_SET(r7, &(0x7f0000001800)={0x0, 0x0, &(0x7f00000017c0)={&(0x7f0000000140)=ANY=[], 0x12f4}}, 0xae1e003fa9d5a544)
read$alg(r7, &(0x7f0000000780)=""/4110, 0x100e)

4.807364996s ago: executing program 9 (id=3078):
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r1 = syz_open_dev$MSR(0x0, 0x0, 0x0)
read$msr(r1, &(0x7f0000032680)=""/102400, 0x19000)
r2 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000080)='/sys/power/mem_sleep', 0x151440, 0x1)
ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3)
recvmsg(r3, &(0x7f0000000640)={&(0x7f0000000180)=@caif=@dgm, 0x80, &(0x7f0000000580)=[{&(0x7f0000000100)=""/33, 0x21}, {0x0}, {&(0x7f0000000280)=""/108, 0x6c}, {0x0}, {&(0x7f0000000340)=""/140, 0x8c}, {0x0}], 0x6, &(0x7f0000001480)=""/4096, 0x1000}, 0x10002)
connect$packet(r3, &(0x7f0000000000)={0x1f, 0xf8, 0x0, 0x1, 0x2, 0x6, @broadcast}, 0x14)
shutdown(r3, 0x1)

4.783894389s ago: executing program 6 (id=3079):
socket$nl_netfilter(0x10, 0x3, 0xc)
r0 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000080), 0x1c0002, 0x0)
write$vga_arbiter(r0, &(0x7f00000000c0)=ANY=[], 0xe)
r1 = socket(0x80000000000000a, 0x2, 0x9)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = syz_open_dev$sndmidi(0x0, 0x2, 0x141101)
r3 = dup(r2)
syz_open_dev$vim2m(&(0x7f0000000240), 0x0, 0x2)
write$6lowpan_enable(r3, &(0x7f0000000000)='0', 0xfffffd2c)
pselect6(0x40, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6}, 0x0, &(0x7f0000000140)={0x1ff, 0xbb, 0x0, 0x9}, 0x0, 0x0)
pselect6(0x40, &(0x7f0000000600)={0x5c2a, 0x1000100000, 0xdf, 0x2000000, 0x1, 0xa, 0x0, 0x4000000000000b}, 0x0, &(0x7f0000000140)={0x1ff, 0xfffffffff, 0x3, 0x4, 0x0, 0xfffffffffffffffd, 0x1, 0xfffffffffffffffe}, 0x0, 0x0)
socket$inet6_sctp(0xa, 0x1, 0x84)
ioctl$VHOST_SET_FEATURES(0xffffffffffffffff, 0x4008af00, &(0x7f0000000100)=0x300000000)
write$vhost_msg_v2(0xffffffffffffffff, &(0x7f0000001700)={0x2, 0x0, {&(0x7f0000000500)=""/71, 0xfffffffffffffed0, 0x0, 0x2, 0x2}}, 0x48)
getsockopt$inet6_int(r1, 0x29, 0x46, 0x0, &(0x7f00000005c0))
r4 = openat$dlm_plock(0xffffffffffffff9c, &(0x7f0000000000), 0x41, 0x0)
write$nbd(r4, &(0x7f0000000240)={0x1000000, 0x0, 0x2, 0xffff, 0x3, "82b0cfc4337965941538be02000000000000000000007400a391793ba7f40000000000fdf700"/48}, 0x40)

4.048339608s ago: executing program 6 (id=3080):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000c80), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_802154(r0, 0x8933, &(0x7f0000002080)={'wpan0\x00', <r2=>0x0})
sendmsg$NL802154_CMD_NEW_SEC_LEVEL(r0, &(0x7f0000002180)={0x0, 0x0, &(0x7f0000002140)={&(0x7f00000020c0)={0x28, r1, 0x1, 0x70bd29, 0x25dfdbfe, {}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r2}, @NL802154_ATTR_SEC_LEVEL={0xc, 0x2d, 0x0, 0x1, [@NL802154_SECLEVEL_ATTR_LEVELS={0x5, 0x1, 0x2d}]}]}, 0x28}, 0x1, 0x0, 0x0, 0x4004040}, 0x8004)

3.859540066s ago: executing program 5 (id=3081):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty}, 0x1c)
setsockopt$sock_int(r0, 0x1, 0xf, &(0x7f0000000200)=0x8, 0x4)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$sock_int(r1, 0x1, 0xf, &(0x7f0000000180)=0x800001, 0x4)
bind$inet6(r1, &(0x7f0000000140)={0xa, 0x4e22}, 0x1c)
socket$inet6_tcp(0xa, 0x1, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
listen(r2, 0x0)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
listen(r3, 0x0)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
listen(r4, 0x0)
r5 = socket$inet6_tcp(0xa, 0x1, 0x0)
listen(r5, 0x0)
r6 = socket$inet6_tcp(0xa, 0x1, 0x0)
listen(r6, 0x0)
r7 = socket$netlink(0x10, 0x3, 0x8000000004)
writev(r7, &(0x7f0000000100)=[{&(0x7f00000002c0)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f6400f95023eed19400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100080c2994000000", 0x58}], 0x1)
syz_genetlink_get_family_id$wireguard(&(0x7f0000000040), r7)

3.859310034s ago: executing program 2 (id=3052):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
getsockopt$IP_VS_SO_GET_SERVICES(r0, 0x0, 0x482, &(0x7f0000001640)=""/139, &(0x7f0000000100)=0x8)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x2, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc, 0x7, {0x1}}, {0xc, 0x8, {0x0, 0x7}}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
fanotify_init(0x8, 0x1)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x19)
madvise(&(0x7f00000ec000/0x800000)=nil, 0x800000, 0x14)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x4000002, 0x5d031, 0xffffffffffffffff, 0x0)
openat$audio(0xffffffffffffff9c, &(0x7f0000000140), 0x40000000101a81, 0x0)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00')
mount$9p_fd(0x0, &(0x7f0000000140)='.\x00', &(0x7f0000000080), 0x0, &(0x7f0000000180)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r4, @ANYBLOB=',wfdno=', @ANYRESHEX=r4, @ANYBLOB="2c6d73697a653d30783030301f303030ba1a10d4f6eda644303766"])
syz_open_dev$sg(&(0x7f0000000100), 0x0, 0x109001)
timer_create(0x0, &(0x7f0000000080)={0x0, 0x11, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000000))
timer_settime(0x0, 0x0, &(0x7f0000000240)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)

3.766657157s ago: executing program 6 (id=3082):
r0 = socket$can_bcm(0x1d, 0x2, 0x2)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000100)={'vcan0\x00', <r1=>0x0})
connect$can_bcm(r0, &(0x7f00000000c0)={0x1d, r1}, 0x10)
sendmsg$can_bcm(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000580)=ANY=[@ANYBLOB="0100000003ece1e40ad8871461ab0800", @ANYRES64=0x0, @ANYRES64=0x0, @ANYRES64=0x0, @ANYRES64, @ANYBLOB="3bf81bb9f9"], 0x20000600}, 0x1, 0x0, 0x0, 0x40000}, 0x0)

2.841652486s ago: executing program 2 (id=3083):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
setsockopt$inet_opts(0xffffffffffffffff, 0x0, 0x4, &(0x7f00000008c0)="88eb45e7fb5bf2dddcd14c66eb73d6cccd21ae6abb79ffffff7f9de3752ce5a0b850c8f60300821032411fe395a8ecdfde1de0885394bbd7fe88b6050000003422c1b7d02f49106cd7fc56f00e9e04aa8aad6173b3d566c62113a7335a82c0cb91e95f6a7bb6a34280f79838de14710acc29b454c4744a41912e4c3474c163ad1a32ed1942ef1d47b322594a059e2700751591e48f2e72009e0008b63b599f4bca3b02460110dca2812011ebb871a68f098459cf148f3bbe4a45fe7c611f72402d6cffcbce8dfc2742aa1cb3468cdd2c907e4f0c5f187e", 0xd7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
r1 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000740)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
signalfd4(0xffffffffffffffff, &(0x7f0000000480), 0x8, 0x0)
syz_io_uring_setup(0x3, &(0x7f0000000580)={0x0, 0xe7b7, 0x13500, 0x0, 0xfffffffd}, &(0x7f0000000240), &(0x7f0000001880))
sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x9a54a87ac2bd5ea9)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$inet_tcp_int(r4, 0x6, 0x3, &(0x7f0000000300), 0x4)
openat$sw_sync(0xffffffffffffff9c, &(0x7f0000000380), 0x0, 0x0)
openat$sw_sync(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
getsockopt$EBT_SO_GET_INIT_INFO(r4, 0x0, 0x82, &(0x7f0000000180)={'nat\x00', 0x0, 0x0, 0x0, [0x6f, 0x343e9804, 0x4, 0xe, 0x1, 0x3]}, &(0x7f00000004c0)=0x50)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
syz_io_uring_setup(0x1da3, &(0x7f00000003c0)={0x0, 0xd933, 0x2, 0x1ffffff, 0x800a0d}, &(0x7f0000000300), &(0x7f0000000080))

2.727381557s ago: executing program 6 (id=3084):
socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = syz_create_resource$binfmt(&(0x7f0000000040)='./file1\x00')
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000001c0)={0xd, 0x4, &(0x7f0000000300)=ANY=[@ANYBLOB="1a00000000000000b800000800000000000000000000000000000000000000006e034bb94fc31eb494e0621a840c2e50ef8bc8906fb05c4de80f58d8fa729f5815ea82530a1c"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xf, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
openat$binfmt(0xffffffffffffff9c, r3, 0x42, 0x1ff)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TCP_CONGESTION(r4, 0x6, 0xd, &(0x7f00000004c0)='dctcp\x00', 0x6)
bind$inet6(r4, &(0x7f0000d84000)={0xa, 0x2, 0x0, @loopback, 0x7}, 0x1c)
setsockopt$inet6_tcp_int(r4, 0x6, 0x2000000000000022, &(0x7f0000000200)=0x1, 0x4)
sendto$inet6(r4, &(0x7f0000000640)='\x00', 0x1, 0x20000045, &(0x7f00000001c0)={0xa, 0x2, 0x398, @empty}, 0x1c)
shutdown(r4, 0x1)
ioctl$VT_ACTIVATE(0xffffffffffffffff, 0x4b4a, 0xffffffffffffff15)
r5 = socket$pppl2tp(0x18, 0x1, 0x1)
r6 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$pppl2tp(r5, &(0x7f0000000000)=@pppol2tpv3={0x18, 0x1, {0x3, r6, {0x2, 0x0, @dev}, 0x2}}, 0x2e)
setsockopt$inet6_IPV6_XFRM_POLICY(r6, 0x29, 0x23, &(0x7f0000000bc0)={{{@in=@rand_addr=0x4, @in6=@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x0, 0x0, 0x0, 0x0, 0x2}, {0x0, 0x0, 0x2, 0x0, 0x8, 0x8, 0x4}, {0x4}, 0x0, 0x0, 0x1}, {{@in6=@remote, 0x80, 0x32}, 0x0, @in6=@empty, 0x0, 0x0, 0x0, 0x8}}, 0xe8)
syz_genetlink_get_family_id$l2tp(&(0x7f00000008c0), 0xffffffffffffffff)

2.718544998s ago: executing program 5 (id=3085):
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x16, 0x0, 0x0)
lseek(0xffffffffffffffff, 0xf, 0x0)
getdents64(0xffffffffffffffff, 0x0, 0x0)
ioctl$TIOCSPGRP(0xffffffffffffffff, 0x5410, &(0x7f0000000000))
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x0)
r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='smaps\x00')
lseek(r1, 0x289e0cb5, 0x0)

1.727176153s ago: executing program 6 (id=3086):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r0 = openat$sequencer2(0xffffff9c, &(0x7f00000011c0), 0x0, 0x0)
ioctl$SNDCTL_SEQ_NRMIDIS(r0, 0xc0045103, &(0x7f0000000180))
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_open_dev$swradio(&(0x7f0000002440), 0x1, 0x2)
syz_io_uring_setup(0x117, &(0x7f0000000300), &(0x7f0000000280)=<r4=>0x0, &(0x7f0000000200))
syz_memcpy_off$IO_URING_METADATA_GENERIC(r4, 0x4, &(0x7f0000000080)=0xfffffc00, 0x0, 0x4)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0)
r5 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000300), 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r5, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r5, &(0x7f0000002140)={0x2020, 0x0, <r6=>0x0}, 0x2020)
syz_fuse_handle_req(r5, &(0x7f0000008400)="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", 0x2000, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000200)={0x90, 0x0, 0x0, {0xffffffffffffffff, 0x2, 0x0, 0x0, 0x0, 0x0, {0x40, 0x4, 0x0, 0xffff, 0x0, 0x0, 0x0, 0x0, 0x120, 0x6000, 0x0, 0x0, 0x0, 0x902}}}, 0x0, 0x0, 0x0, 0x0, 0x0})
write$FUSE_INIT(r5, &(0x7f0000000440)={0x50, 0x0, r6}, 0x50)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000a80)='./file0/file0\x00', 0x0, 0x1)
ioctl$TIOCGPTPEER(r7, 0x301, 0x8)
r8 = syz_open_procfs(0x0, &(0x7f0000000000)='fdinfo\x00')
getdents64(r8, &(0x7f0000000280)=""/4096, 0x1000)
socket$nl_generic(0x10, 0x3, 0x10)

1.349316786s ago: executing program 9 (id=3087):
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r0, 0x400448ca, 0x0)
syz_usb_connect(0x0, 0x40, 0x0, 0x0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_bt_hci(r0, 0x400448c9, 0x0)
setsockopt$llc_int(0xffffffffffffffff, 0x10c, 0xd, &(0x7f0000000100)=0x11ce40f3, 0x4)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000140)={0x0, <r1=>0x0})
timer_create(0x0, &(0x7f0000000080)={0x0, 0x91, 0x4, @tid=r1}, &(0x7f0000000040))
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001640)={0x11, 0x19, 0x0, &(0x7f0000000000)='GPL\x00', 0xa, 0xde, &(0x7f0000000340)=""/222, 0x0, 0x1, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000200)={&(0x7f0000000440)=ANY=[@ANYBLOB="300000001100000127bd7000fddbdf25000000007ca276c283322d29c07ac9b1ad42c2072b11e8c1cce3ee337230670ca73913c1b7e2d62498edf7b02f20b7a2c508f4347388989276b3805b0fada342ccc3a605ed34d109f2af5e347219b482686c50d377890caf5aac5650091ec25279c20e1ed01edf9ae19694d76863046d1d3318936c726776c19826d1cce0ce6a4477ab6aaed0beb4854e4c641a3c1de0f1cdde42254aaf25e5a78647ca0c63d68b3ca4ecba19ca57c9b2f3d189d49d1a2b71a14ae1e3669abe39a66a7ffcfa3a372d3ac5f073fe2005f92e9758f7098100000000000000", @ANYRES32=0x0, @ANYBLOB="0100000020400000050010000c0000000800230006000000"], 0x30}}, 0x24008880)
socket$nl_netfilter(0x10, 0x3, 0xc)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$KVM_CREATE_DEVICE(0xffffffffffffffff, 0xc00caee0, &(0x7f0000000100)={0x4, <r3=>0xffffffffffffffff})
ioctl$KVM_SET_DEVICE_ATTR(r3, 0x4018aee1, &(0x7f00000001c0)=@attr_other={0x0, 0x1, 0x2, &(0x7f0000000000)=0x6})
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000340)={0x6, 0x18, &(0x7f0000000580)=ANY=[@ANYBLOB="180000009a010000000000000500000018110000d5903d0fe25ee49d69c127a073c160a2e47ba3c3e5dd5f4ef66aede2387e24f6a5867909d956a80475a81b48eb04a23fd18dec90db36f40eebdcd557a2323c2f6312963b330c7b2b762675577d309b6e97d5c60c2e7909bd1126fd0d", @ANYRES32, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf090000000000005509010000000000950000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000090000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000010000008500000082000000bf91000000000000b7020000010000008500000085000000b7000000000000009500000000000000"], &(0x7f0000000080)='GPL\x00', 0x8, 0x0, 0x0, 0x41100, 0x71, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000280)={0x1, 0x8, 0x472, 0x5}, 0x10, 0x0, 0x0, 0x1, &(0x7f0000000040)=[0x1, 0xffffffffffffffff], &(0x7f0000001700)=[{0x4, 0x3, 0x5, 0x3}], 0x10, 0xb, @void, @value}, 0x94)
timer_settime(0x0, 0x0, &(0x7f0000000240)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)
sync()

1.247365534s ago: executing program 2 (id=3088):
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x121600, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)=@newtaction={0x50, 0x30, 0x1, 0x0, 0x3, {}, [{0x3c, 0x1, [@m_mpls={0x38, 0x1, 0x0, 0x0, {{0x9}, {0xc, 0x2, 0x0, 0x1, [@TCA_MPLS_LABEL={0x8, 0x5, 0x3}]}, {0x4, 0x4}, {0xc}, {0xc, 0x8, {0x0, 0x1}}}}]}]}, 0x50}, 0x1, 0x0, 0x0, 0x4000000}, 0x0)
openat$audio1(0xffffffffffffff9c, &(0x7f0000000080), 0x129202, 0x0)
syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c0000"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000003c0)={{0x14}, [@NFT_MSG_NEWRULE={0x6c, 0x6, 0xa, 0x401, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x40, 0x4, 0x0, 0x1, [{0x3c, 0x1, 0x0, 0x1, @immediate={{0xe}, @val={0x28, 0x2, 0x0, 0x1, [@NFTA_IMMEDIATE_DREG={0x8}, @NFTA_IMMEDIATE_DATA={0x1c, 0x2, 0x0, 0x1, [@NFTA_DATA_VERDICT={0x18, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffd}]}]}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x94}, 0x1, 0x0, 0x0, 0x4000000}, 0x0)
sendmsg$NFT_BATCH(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000500)={{0x14}, [@NFT_MSG_DELCHAIN={0x2c, 0x5, 0xa, 0x9, 0x0, 0x0, {0x2}, [@NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_CHAIN_NAME={0x9, 0x3, 'syz2\x00'}]}], {0x14}}, 0x54}}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r2, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz1\x00', 0x1ff)
mount$fuse(0x0, 0x0, 0x0, 0xfc5cd7921c2c19c4, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400))
setpgid(0x0, 0x0)

301.75929ms ago: executing program 2 (id=3089):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)={{0x14, 0x10, 0x4}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x5, 0x0, 0x0, {0x7, 0x0, 0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWSET={0x3c, 0x9, 0xa, 0x401, 0x0, 0x0, {0x7}, [@NFTA_SET_ID={0x8}, @NFTA_SET_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x21}]}, @NFT_MSG_NEWSETELEM={0x88, 0xc, 0xa, 0x301, 0x0, 0x0, {0x7}, [@NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_ELEM_LIST_ELEMENTS={0x5c, 0x3, 0x0, 0x1, [{0x58, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_FLAGS={0x8, 0x3, 0x1, 0x0, 0x2}, @NFTA_SET_ELEM_EXPRESSIONS={0x4c, 0xb, 0x0, 0x1, [{0x34, 0x1, 0x0, 0x1, @limit={{0xa}, @val={0x24, 0x2, 0x0, 0x1, [@NFTA_LIMIT_RATE={0xc, 0x1, 0x1, 0x0, 0x3}, @NFTA_LIMIT_TYPE={0x8, 0x4, 0x1, 0x0, 0x1}, @NFTA_LIMIT_UNIT={0xc, 0x2, 0x1, 0x0, 0x10}]}}}, {0x14, 0x1, 0x0, 0x1, @match={{0xa}, @val={0x4}}}]}]}]}]}], {0x14, 0x10, 0x1, 0x0, 0x0, {0x0, 0x84}}}, 0x10c}}, 0x0)

173.832222ms ago: executing program 4 (id=3090):
syz_open_dev$sndpcmc(&(0x7f0000000080), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000080)=ANY=[@ANYBLOB="043e1f0a"], 0x22)

87.319045ms ago: executing program 4 (id=3091):
mkdir(&(0x7f0000000040)='./file0\x00', 0x0)
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0)
connect$bt_l2cap(r0, &(0x7f0000000080)={0x1f, 0x0, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}, 0x7ff}, 0xe)
ioctl$sock_bt_hidp_HIDPCONNADD(0xffffffffffffffff, 0x400448c8, &(0x7f0000000280)={r0, r0, 0xc, 0x0, 0x0, 0x9, 0x1, 0x458, 0x9, 0x9, 0x2, 0x7, 'syz0\x00'})
syz_open_dev$dri(&(0x7f0000000100), 0x0, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
mkdir(0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x10, &(0x7f0000000f80)=ANY=[@ANYRESDEC=r1, @ANYRESOCT=r2, @ANYRESDEC=r1, @ANYRESHEX=r0, @ANYRES16, @ANYRESOCT], &(0x7f0000000000)='GPL\x00', 0x7, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0xe1}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
r3 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_group_source_req(r3, 0x29, 0x2e, &(0x7f0000000000)={0x407, {{0xa, 0x0, 0x0, @mcast1}}, {{0xa, 0x0, 0xfffffffd, @remote}}}, 0x104)
r4 = getpid()
sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r5, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r6, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001100)={0x18, 0x0, 0x0, &(0x7f0000000100)='GPL\x00', 0x20000000, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x2, @void, @value}, 0x94)
write$RDMA_USER_CM_CMD_BIND(0xffffffffffffffff, &(0x7f0000001000)={0x14, 0x88, 0xfa00, {0xffffffffffffffff, 0x6e01deba812464bf, 0x0, @in={0x2, 0x4e24, @local}}}, 0x90)
setsockopt$IPT_SO_SET_REPLACE(r2, 0x0, 0x40, &(0x7f0000000480)=@raw={'raw\x00', 0x8, 0x3, 0x408, 0x0, 0x11, 0x148, 0x14c, 0x10, 0x374, 0x2a8, 0x2a8, 0x374, 0x2a8, 0x7fffffe, 0x0, {[{{@uncond, 0x10, 0x104, 0x14c, 0x1c, {}, [@common=@inet=@hashlimit1={{0x58}, {'ip6gretap0\x00', {0x0, 0x0, 0x9, 0x0, 0x0, 0xffffffff, 0x8}}}, @common=@unspec=@limit={{0x3c}, {0x6, 0x8, 0x2, 0x12, 0x0, 0x7, 0x3}}]}, @unspec=@CT0={0x48, 'CT\x00', 0x0, {0x1, 0x1ff, 0x0, 0x2, 'snmp\x00', {0xff}}}}, {{@ip={@multicast1, @rand_addr=0x64010102, 0x0, 0x0, 'syzkaller0\x00', 'veth1_to_batadv\x00'}, 0x0, 0x1c8, 0x228, 0x0, {}, [@common=@inet=@hashlimit3={{0x158}, {'team_slave_0\x00', {0x459, 0x0, 0x48, 0x0, 0x0, 0x3, 0x2, 0x80, 0x0, 0x18}, {0x91}}}]}, @common=@SET={0x60, 'SET\x00', 0x0, {{0x3, [0x1, 0x3, 0x2, 0x0, 0x2, 0x1]}, {0x1, [0x3, 0x2, 0x1, 0x0, 0x3, 0x5], 0x4}}}}], {{'\x00', 0xc8, 0x70, 0x94}, {0x24}}}}, 0x464)
r7 = openat$vimc0(0xffffff9c, &(0x7f0000000140), 0x2, 0x0)
sendmsg$TIPC_NL_KEY_SET(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000280)=ANY=[@ANYRES16=r7], 0x18}, 0x1, 0x0, 0x0, 0x8800}, 0x40)
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x2, 0xe, &(0x7f0000000200)=ANY=[@ANYBLOB="b70000001a000000bca300000000000024030000c0feffff620af0fff8ffffff71a4f2ff000000001f03000000000000e5000200000000002604fdffff02000014010000030000001d130000000000007a0a00fe0000001f0f14000000000000b503f7fff80000009500000000000000033bc065b78111c6dfa041b63af4a3912435f1a864a7aad58db6a693002e7f3be361917adef6ee1c8a2a4f8ef1e50becb19bc461e91a7168e5181554a090f300020000fe275daf51efd601b6bf01c8e8b1b526375ee4dd6fcd82e4fee5bef7af9aa0d7d600c095199fe3ff3128e599b0eaebbdbd732c9cc00eec363e4a8f6456e2cc21557c0afc646cb7798b3e6440c2fbdb00a3e35208b0bb0d2cd829e65440000000000000000028610643a98d9ec21ead2ed51b104d4d91af25b845b9f7d08d123deda88c658d42ecbf28bf7076c15b463bebc72f526dd70252e79166d858fcd0e06dd31af9612fa402d0b11008e59a5923906f88b53987ad1714e72ba7a54f0c33d39000d06a59ff61623604000000000000006a89adaf17b0a6041bdeebdfd1f5089048ddff6da40f9411fe7226a40409d6e37c4f46756d31cb467600ade70063e5291569b33d21dae356e1c51f03a801be8189679a16da18ec0ae564163427afea62d84f3a10076443d643649393bf52d2105bd901128c7e0ec82701c8204a1deeed4155617572652d950ad31928b0b036dc2869f478341d02d0f5ad94b081fcd507acb4b9c67382f13d000000225d85ae49cee383dc5049076b98fb6853ab39a21514da60d2ae20cfb91d6a49964757cdf538f9ce2bdbb9893a5de817101a3062cd54f9ff51d355d84ce97bb0c6b6a595e487a2cc47c0efbb2d71cde2c10f0bc6980fe78683ac5c0c31032599dd273863be9261eee52216d009f4c52048ef8c126aeef5f510a8f1aded94a129e4aec6e8d9ab06faffc3a15d91c2ea3e2e04cfe031b287539d0540059fe6c7fe7cd8697502c7596566d674e425da5e7f009602a9f61d3804b3e0a1053abdc31282dfb15eb6841bb64a1b3045024a982f3c48153baae244e7bf573eac34b781337ad5905c6bbf1137548c7f1a4cad2422ee965a38f7defbd2960242b104e20dc2d9b0c35608d402ccdd9069bd50b994fda7a90144022a579dfc0229cc0dc98816106dec28eaeb883418f562ae00003ea96d10f172c0374d6eed826416050000000bfe9b4a9c5a90ff59d54d1f92ecc48899b212c55318294270a1ad10c80fef7c24d47afcc829ba0f85da6d888f18ea40ab959f6074ab2a40d85d1501783a7ab540b8d7b4ead35a385e0b4a26b702396df7e0c1e02b88c114f244a9bf93f04bf072f0861f5c0b000000000000eedcf2ba1a9508f9d6aba582a896a9f1ffa968eacea75caf822a7a63ba3401e6a52acb11883ad2a3b1832371fe5bc621426d1ed01b389708165b9cdbae2ed9dc7358f0ebadde0b727f27feeb7464dcd857ab15e355713767c536cbae2f5c7d951680f6f2f9a6a8346962a350845ffa0d82884f79adc287906943408e6df3c391e97ba48db0a5adbfd03aac93df8866fb010ae20e92bed1fe39af169d2a466f0db6f3d9436a7d55fc30511d00000000c95265b2bd83d64a532869d701723fedcbada1ee7baa19faf67256b56a41fd355b6a686b50f0937f778af083e055f6138a757ebd0ed91124a6b244f9acf41ac5d73a008364e0606a594817031fc2f52c8785fe0721719b3d654026c6ea08b83b123145ab5703dad844ced301efeb6dc5f6a9037d2283c42efc54fa84323afc4c10eff462c8843187f1dd48ef0981000000000000ff0f40b1888e1cdba94a6ea80c33ead5722c3293a493f1479531dd88261458f40d31fe8df15efaaeea831555877f9538c6ee6ba65893ff1f908ba7554ba583ec7932f5954f31a878e2fae6691d1aee1da02ba516467df3e7d1daac43738612e4fee18a22da19fc08001011e32f80fb60e14b9eee094277bbc170882c8890205f3a6da2819d2f9e77c7c64affa54fec0136cbafa5f62e3f753b639a924599c1f69219927ea5301fff0a6063d427180d61542c2571f983e96635600000554f327a3535e7c7542799493c31ac05a7b57f03ca91a01ba2a30ca99e969d6fd09dc28ebc15edb4d91675767999d146aef7799738b292fd64bb25b2969e2b15f36b788bce5ccdbaf75c94cb93499f6947a967a794963342aece449a0d80010f5c653d22d49030a8c2a4ab595bf4238f18ca428dafc7ac96d404607a0000000051a2104f22e6db5a62b5089c1b45282d38864daa3ae81d6b0968d1d2867b6ef9d12096833d6864da40b54783a17aaeb6737c323f9f98e354cc98dcfe23ad01bd1c61563e69ffe1c2c73e1661261173f359e93d2c5e424c17998809ec8f0232b3955e052a4cecd89008f70314a0bdd491ec035d232f89fe0120f64c62e8e3ed8bcb45202c204bbec8d722824c0ebca8db1ea4a05e41f6016ab5bbe4fe7ff5d785d0128171c90d9900ca2532b0f9d01c4b45294fbba468df3e1b393cb4e62e753b4172ba7ac1f2b51c94bc5d047899fd219f448bf9189c65c9d91eda6b52a373803a9efe44f86909bc90addb7b9aee813df534aac4b3093c91b8068cd849904568916694d461b76a58d88cf0f520310a1e9fdc18cde98d662eee077515d0a881192292ffff5392ab3d1311b82432662806add87047f601fa888400000000000000000000000000006acc19808d7cf29bc974b0ea92499a41b9b9a7c2bca311a28ee4952f2d325a56397c78f12205db653a536f9f3322405d1efd78e578dc6b3fb84f3738a4b6caa800000087efa51c5d95ecba4e50e529d1e8c89600e809dc3d0a2f65579e23457949a50f2d0455cf79a43746979f99f6a1527f004f1e37a3926937e84fb478199dc1020f4beb98b8074bf7df8b5e783637da740800000000000000c55a4385e9a617aa6c8e10d4202c5afeb06e2f9115558ea12f92d7ae633d44086b3f03b20d546fa66a72e38207c9d20035abc46271a30f1240de52536941242d23896ab74a3c6670fdc49c14f34fc4eadd6db8d80eba439772bf60a1db18c472dafc5569adc282928d2a1ffe29f1a57d3f18f4edaeb5d37918e6fddcd821da67a0785585a4443440dc65600e64a6a2740000000000000000000000000000000000000000000a0009dd14b38f2f4426d7cf5075047c31f6ce6adddfe3ac649c0643c8bfbeb14ba1fd7a485aa893915cf81e29aaf375e904bbe52691a4100260ffcd8f1d04166d291ebcef893e1b9ccb6797d0646fe0e7274434f28efb43e06e64f0698caca42f4e6018a455736c482a017e2b13dac4a90faa109f0e87cc94e3efb649692456463ca74aa6ad4bf50c1acb0000000000000005375e528285544d0064b98646f3109e9a4942ce42c6e7ec84b664f6c2770803f10baa804a707f0a1fcbfc309381aeba191950bae71f37f1eb7ceeffb3c0547ac6571603adbfde4c8b5f8d7f4b854441613633b48865b65bdc415e1e0dcf672d68cf4cebf04f4bc1eebf560a26d34d3757b1450fdb0a9a69f432e277f3a0386eb2bd3305c821c64757f786b79fef54dbe64c67d73934bc80b2133fb3c04cc7ea48bf97a6243c9f95dcbddecf45f008f1822c7868e1ff5a3cff5d6b6898335792749df7b1f51e91f8c1c3b1b93b33aaa3fab69cef08a9f6f6cf39dea3d878b2ed42545421970cc426e644332bc956d1c6adefdf0ede2c5c94aa632646ae225accdf031f611d01622921f1b922a5ac887cca3136133dce8d9f5f4da7bed2ea5d94362200000000000000000000f296b0c1484e5f781ad26bff696b05ff0a5e2270e07618b04273bd4075ea38ab463bfa6a38e7c537498ba3e4df8dfc9e040000003c3ffad44d2a376def42e41e9fc31678257e040fa7cf32c221aaac08000000000000001a00000000000000000000173570f0c11ae694b0f7a4f9c2f6790044a357e785af6e153d5f1ea460af92c7cbbd6295afe740f5e154346d483e0d641ef02e4d5295d756e110522a7a945b93fb705b95b6aae27a8fb33732ce1da1c0b1af8eb9222a06e984ab1e6984c8bdc12360627137ab67b6b68ab08acb29a74dc36b51209cfbc87f61182bbeb2772e9d5a1ffc477179be481efe46a4ce86be0b1d8eee42a611a3d44ca450b14586ed63dd92005c79e4a8ab8a94f0c6cb4bed8594a39bd76d3ef8a7ab014e787596db796bd93a36c2880423291e3bccc86f66ba792ff4d87b3f80e5908779e51c5e9055fc5b23605cd000c723187ef09dcf4b07b06a9342f3f62ee7acddff292082c1f4d8eb9561f80873a09a1ae0c9af1121175e5600f43a1179484502009759264a5729f07c2b218fa36ba2316a99aaad0130df83d0bda1e711290f78c143ea143967b00adcd77e6ad5e48d839ea61aadb83e4d071c54691924a3830d3e7b5c198bb0ed623153590000000000000000004b985ea1702f34f2f85b168c083e810ed567e3f1979b9ed1a4bf6a10dac825c96a0828b335de445a4880bb6474157efd1a72ca46ae4cbe3ab648c9bc4867a5a4cb87d7d6d55475b34b3cb6aa9e2337d4e04a37e35109752522ac9b186ddd80c47da6a2f4ef7bb909c975520000000000000000000000219cf5c1376ab33786f6b856d354e90a2733f78f2d188057cead3480eade49d55b770fad7fa000d23da6275768810b6b2df91d3a991ea98d929d271696c258d5b735d5db11df434e7dd1b7c1ca05cea3977df564115f4ec6ffab1d2ff8a642ca50934b3fbe44b0abeba9df209566984a29dfc0466e439a94e177b3c4d5f6e92b8176b9d6ddeeeb196fa964217f88e1acc180aaa4"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xffffffffffffff97, 0x10, &(0x7f00000000c0), 0xfffffffffffffd27, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
mount$overlay(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000080)={[{@nfs_export_on}, {@upperdir={'upperdir', 0x3d, './file0/file0'}}, {@metacopy_on}], [], 0x2c})

5.648268ms ago: executing program 2 (id=3092):
sendmsg$NFQNL_MSG_CONFIG(0xffffffffffffffff, &(0x7f0000000ac0)={0x0, 0x0, &(0x7f0000000a80)={&(0x7f0000000100)=ANY=[@ANYBLOB="300000000203010200000000000000000000000008000340000000000900020000000000020000000800010001"], 0x30}}, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x40002, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
mknodat$loop(0xffffffffffffff9c, 0x0, 0x6000, 0x1)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000300)='blkio.bfq.io_merged_recursive\x00', 0x275a, 0x0)
syz_emit_ethernet(0x36, &(0x7f0000000100)=ANY=[@ANYBLOB="000002f0d31209000000bc2e79e995"], 0x0)
write$binfmt_script(r2, &(0x7f0000000100), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r2, 0x0)
preadv(r2, &(0x7f00000015c0)=[{&(0x7f0000000080)=""/124, 0xffffff23}], 0x3e, 0x0, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$TIOCSTI(0xffffffffffffffff, 0x5412, &(0x7f0000000000)=0x13)
ioctl$TIOCSTI(0xffffffffffffffff, 0x5412, &(0x7f0000000140)=0xd)
syz_emit_ethernet(0x4a, &(0x7f0000000000)=ANY=[@ANYBLOB="aaaaaaaaaaaaffffffffffff86dd600a847500140600fe8000"/34], 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe6000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f0000000180)="66b9800000c00f326635000800000f300f0f1c9a65660ff3b20618baa000ec672e660f38803d004000000f285473f61366b9800000c00f326635004000000f300f20e06635800000000f22e0f30fa6c8", 0x50}], 0x1, 0x0, 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20004000}, 0x14)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f00000004c0)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={0x0}, 0x10)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

0s ago: executing program 5 (id=3093):
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000004c0), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x3)
ioctl$KVM_SET_GSI_ROUTING(r1, 0x4008ae6a, &(0x7f0000000280))
mkdir(&(0x7f00000004c0)='./bus\x00', 0x8b)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000400)={[{@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
chdir(&(0x7f0000000140)='./bus\x00')
ioprio_set$uid(0x3, 0x0, 0x0)
sched_setattr(0x0, &(0x7f0000000000)={0x38, 0x5}, 0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x7ffff000)
r2 = openat$drirender128(0xffffffffffffff9c, &(0x7f0000000000), 0x2802, 0x0)
r3 = socket$packet(0x11, 0x3, 0x300)
dup(r3)
r4 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
ioctl$int_in(r4, 0x40000000af01, 0x0)
ioctl$VHOST_SET_VRING_ADDR(r4, 0x4028af11, &(0x7f0000000200)={0x1, 0x1, 0x0, &(0x7f0000000740)=""/51, 0x0})
r5 = socket$packet(0x11, 0x3, 0x300)
ioctl$VHOST_SET_MEM_TABLE(r4, 0x4008af03, &(0x7f0000000340))
r6 = dup(r5)
ioctl$VHOST_NET_SET_BACKEND(r4, 0x4008af30, &(0x7f0000000000)={0x1, r6})
ioctl$VHOST_SET_FEATURES(r4, 0x4008af00, &(0x7f00000001c0)=0x304008000)
close_range(r2, 0xffffffffffffffff, 0x0)

kernel console output (not intermixed with test programs):

330.834464][T12096] bridge0: entered promiscuous mode
[  330.841875][T12096] bridge0: left promiscuous mode
[  331.007129][   T30] audit: type=1400 audit(2000000069.410:92253): avc:  denied  { mount } for  pid=12091 comm="syz.7.2122" name="/" dev="cgroup2" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
[  331.159407][ T5813] usb 7-1: new low-speed USB device number 2 using dummy_hcd
[  331.358397][ T5813] usb 7-1: config 0 interface 0 altsetting 6 endpoint 0x81 has an invalid bInterval 0, changing to 10
[  331.380636][   T30] audit: type=1326 audit(2000000069.780:92254): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12110 comm="syz.0.2129" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7b96f8d169 code=0x7ffc0000
[  331.381472][ T5813] usb 7-1: config 0 interface 0 altsetting 6 endpoint 0x81 has invalid maxpacket 1024, setting to 8
[  331.418792][ T5813] usb 7-1: config 0 interface 0 has no altsetting 0
[  331.440998][   T30] audit: type=1326 audit(2000000069.780:92255): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12110 comm="syz.0.2129" exe="/root/syz-executor" sig=0 arch=c000003e syscall=13 compat=0 ip=0x7f7b96f8d169 code=0x7ffc0000
[  331.464633][ T5813] usb 7-1: New USB device found, idVendor=04d9, idProduct=a067, bcdDevice= 0.00
[  331.473915][ T5813] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  331.478201][   T30] audit: type=1326 audit(2000000069.780:92256): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12110 comm="syz.0.2129" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7b96f8d169 code=0x7ffc0000
[  331.507161][ T5813] usb 7-1: config 0 descriptor??
[  331.521728][T12103] raw-gadget.2 gadget.6: fail, usb_ep_enable returned -22
[  331.575142][   T30] audit: type=1400 audit(2000000069.980:92257): avc:  denied  { append } for  pid=12119 comm="syz.2.2133" name="kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  331.680647][ T5866] usb 6-1: USB disconnect, device number 4
[  331.904230][T12136] __nla_validate_parse: 3 callbacks suppressed
[  331.904247][T12136] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2140'.
[  331.941748][T12136] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  331.950021][ T5813] holtek_mouse 0003:04D9:A067.0007: bogus close delimiter
[  331.963106][ T5813] holtek_mouse 0003:04D9:A067.0007: item 0 2 2 10 parsing failed
[  331.964234][T12136] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  331.971837][   T30] audit: type=1400 audit(2000000070.370:92258): avc:  denied  { firmware_load } for  pid=12134 comm="syz.5.2140" scontext=system_u:system_r:kernel_t tcontext=system_u:system_r:kernel_t tclass=system permissive=1
[  332.003481][ T5813] holtek_mouse 0003:04D9:A067.0007: hid parse failed: -22
[  332.012998][ T5813] holtek_mouse 0003:04D9:A067.0007: probe with driver holtek_mouse failed with error -22
[  332.075074][T12145] netlink: 4684 bytes leftover after parsing attributes in process `syz.7.2144'.
[  332.217750][ T5813] usb 7-1: USB disconnect, device number 2
[  332.789201][   T10] usb 3-1: new full-speed USB device number 16 using dummy_hcd
[  332.853135][   T30] kauditd_printk_skb: 5 callbacks suppressed
[  332.853149][   T30] audit: type=1326 audit(2000000071.260:92264): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12162 comm="syz.5.2153" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f36c098d169 code=0x7ffc0000
[  332.889594][T12161] bridge0: entered promiscuous mode
[  332.909202][T12161] vlan2: entered promiscuous mode
[  332.967673][   T30] audit: type=1326 audit(2000000071.300:92265): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12162 comm="syz.5.2153" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f36c098d169 code=0x7ffc0000
[  332.995375][   T10] usb 3-1: config 1 has an invalid interface number: 31 but max is 0
[  333.015344][   T10] usb 3-1: config 1 has no interface number 0
[  333.031051][   T10] usb 3-1: New USB device found, idVendor=0bda, idProduct=818c, bcdDevice=7e.60
[  333.047981][   T10] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  333.059240][   T30] audit: type=1326 audit(2000000071.300:92266): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12162 comm="syz.5.2153" exe="/root/syz-executor" sig=0 arch=c000003e syscall=13 compat=0 ip=0x7f36c098d169 code=0x7ffc0000
[  333.090143][   T10] usb 3-1: Product: syz
[  333.101926][   T10] usb 3-1: Manufacturer: syz
[  333.111146][   T10] usb 3-1: SerialNumber: syz
[  333.123404][   T30] audit: type=1326 audit(2000000071.300:92267): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12162 comm="syz.5.2153" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f36c098d169 code=0x7ffc0000
[  333.150828][   T10] usb-storage 3-1:1.31: USB Mass Storage device detected
[  333.182631][   T30] audit: type=1326 audit(2000000071.300:92268): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12162 comm="syz.5.2153" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f36c098d169 code=0x7ffc0000
[  333.235121][   T30] audit: type=1400 audit(2000000071.590:92269): avc:  denied  { setcurrent } for  pid=12173 comm="syz.6.2157" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
[  333.280229][T12161] bridge0: left promiscuous mode
[  333.844181][T12183] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  333.853390][T12183] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  335.130831][T12207] rdma_op ffff888053ae99f0 conn xmit_rdma 0000000000000000
[  335.291165][    T9] usb 3-1: USB disconnect, device number 16
[  335.333437][T12212] team_slave_0: entered promiscuous mode
[  335.339156][T12212] team_slave_1: entered promiscuous mode
[  335.359257][   T10] usb 7-1: new full-speed USB device number 3 using dummy_hcd
[  335.370689][T12212] vlan2: entered promiscuous mode
[  335.379532][T12212] team0: entered promiscuous mode
[  335.409433][T12212] team0: left promiscuous mode
[  335.415230][T12212] team_slave_0: left promiscuous mode
[  335.420715][T12212] team_slave_1: left promiscuous mode
[  335.520622][   T10] usb 7-1: config 1 has an invalid interface number: 31 but max is 0
[  335.549312][   T10] usb 7-1: config 1 has no interface number 0
[  335.560902][   T10] usb 7-1: New USB device found, idVendor=0bda, idProduct=818c, bcdDevice=7e.60
[  335.580873][   T10] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  335.601679][   T10] usb 7-1: Product: syz
[  335.605866][   T10] usb 7-1: Manufacturer: syz
[  335.611762][   T10] usb 7-1: SerialNumber: syz
[  335.621321][   T10] usb-storage 7-1:1.31: USB Mass Storage device detected
[  336.604014][T12232] rdma_op ffff88802ff331f0 conn xmit_rdma 0000000000000000
[  338.056553][T12255] bond_slave_0: entered promiscuous mode
[  338.062470][T12255] bond_slave_1: entered promiscuous mode
[  338.087313][T12255] vlan2: entered promiscuous mode
[  338.105288][T12255] bond0: entered promiscuous mode
[  338.140604][T12255] bond0: left promiscuous mode
[  338.145864][T12255] bond_slave_0: left promiscuous mode
[  338.151355][T12255] bond_slave_1: left promiscuous mode
[  338.212364][   T30] audit: type=1326 audit(2000000076.622:92270): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12258 comm="syz.2.2188" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f950f38d169 code=0x7ffc0000
[  338.302317][   T30] audit: type=1326 audit(2000000076.652:92271): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12258 comm="syz.2.2188" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f950f38d169 code=0x7ffc0000
[  338.455607][  T975] usb 7-1: USB disconnect, device number 3
[  338.462353][   T30] audit: type=1326 audit(2000000076.652:92272): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12258 comm="syz.2.2188" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f950f38d169 code=0x7ffc0000
[  338.526027][   T30] audit: type=1326 audit(2000000076.652:92273): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12258 comm="syz.2.2188" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f950f38d169 code=0x7ffc0000
[  338.653135][   T30] audit: type=1326 audit(2000000076.652:92274): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12258 comm="syz.2.2188" exe="/root/syz-executor" sig=0 arch=c000003e syscall=61 compat=0 ip=0x7f950f38d169 code=0x7ffc0000
[  338.761161][   T30] audit: type=1326 audit(2000000076.652:92275): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12258 comm="syz.2.2188" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f950f38d169 code=0x7ffc0000
[  339.819276][   T30] audit: type=1400 audit(2000000077.282:92276): avc:  denied  { write } for  pid=12281 comm="syz.2.2199" path="socket:[32964]" dev="sockfs" ino=32964 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1
[  339.844472][  T975] usb 7-1: new high-speed USB device number 4 using dummy_hcd
[  340.433392][  T975] usb 7-1: config 0 has an invalid interface number: 255 but max is 0
[  340.441914][  T975] usb 7-1: config 0 has no interface number 0
[  340.447611][   T30] audit: type=1400 audit(2000000078.852:92277): avc:  denied  { mount } for  pid=12297 comm="syz.0.2205" name="/" dev="devpts" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:devpts_t tclass=filesystem permissive=1
[  340.451884][  T975] usb 7-1: too many endpoints for config 0 interface 255 altsetting 255: 255, using maximum allowed: 30
[  340.525442][  T975] usb 7-1: config 0 interface 255 altsetting 255 has 0 endpoint descriptors, different from the interface descriptor's value: 255
[  340.553447][  T975] usb 7-1: config 0 interface 255 has no altsetting 0
[  340.571489][  T975] usb 7-1: New USB device found, idVendor=0bda, idProduct=0177, bcdDevice=7d.0b
[  340.591275][  T975] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  340.609993][  T975] usb 7-1: config 0 descriptor??
[  340.620457][  T975] ums-realtek 7-1:0.255: USB Mass Storage device detected
[  340.699326][T12305] bond_slave_0: entered promiscuous mode
[  340.705023][T12305] bond_slave_1: entered promiscuous mode
[  340.716217][T12305] vlan2: entered promiscuous mode
[  340.722361][T12305] bond0: entered promiscuous mode
[  340.729254][T12305] bond0: left promiscuous mode
[  340.734312][T12305] bond_slave_0: left promiscuous mode
[  340.739755][T12305] bond_slave_1: left promiscuous mode
[  340.848528][  T975] usb 7-1: USB disconnect, device number 4
[  340.976038][T12311] 9pnet_fd: Insufficient options for proto=fd
[  341.227706][T12323] netlink: 24 bytes leftover after parsing attributes in process `syz.0.2210'.
[  342.901861][T12334] netlink: 'syz.2.2216': attribute type 4 has an invalid length.
[  342.923881][T12336] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  342.931162][T12336] IPv6: NLM_F_CREATE should be set when creating new route
[  342.938366][T12336] IPv6: NLM_F_CREATE should be set when creating new route
[  344.106880][T12362] input: syz0 as /devices/virtual/input/input24
[  344.319121][   T10] usb 8-1: new high-speed USB device number 3 using dummy_hcd
[  344.569783][   T10] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  344.586417][   T10] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  344.605096][   T10] usb 8-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  344.621132][   T10] usb 8-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  344.634277][   T10] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  344.645491][   T10] usb 8-1: config 0 descriptor??
[  344.732515][   T30] audit: type=1400 audit(2000000083.132:92278): avc:  denied  { listen } for  pid=12379 comm="syz.2.2233" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  344.757401][   T30] audit: type=1400 audit(2000000083.132:92279): avc:  denied  { getopt } for  pid=12379 comm="syz.2.2233" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  344.899635][T12385] xt_time: unknown flags 0xc
[  345.227027][T12387] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  345.261401][   T10] plantronics 0003:047F:FFFF.0008: reserved main item tag 0xd
[  345.270423][   T10] plantronics 0003:047F:FFFF.0008: No inputs registered, leaving
[  345.279546][   T10] plantronics 0003:047F:FFFF.0008: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.7-1/input0
[  345.342456][T12395] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2236'.
[  345.351568][T12395] netlink: 16 bytes leftover after parsing attributes in process `syz.2.2236'.
[  345.361522][T12395] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2236'.
[  345.370584][T12395] netlink: 16 bytes leftover after parsing attributes in process `syz.2.2236'.
[  345.379540][T12395] netlink: 5 bytes leftover after parsing attributes in process `syz.2.2236'.
[  345.627916][  T975] usb 8-1: USB disconnect, device number 3
[  345.643736][T12360] plantronics 0003:047F:FFFF.0008: usb_submit_urb(ctrl) failed: -19
[  346.623202][T12425] hub 9-0:1.0: USB hub found
[  346.628729][T12425] hub 9-0:1.0: 1 port detected
[  350.298299][  T975] usb 3-1: new high-speed USB device number 17 using dummy_hcd
[  350.448300][ T5866] usb 7-1: new high-speed USB device number 5 using dummy_hcd
[  350.470404][T12477] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2264'.
[  350.480576][  T975] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  350.492161][  T975] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  350.502064][T12477] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  350.511760][  T975] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  350.525524][T12477] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  350.536644][  T975] usb 3-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  350.547015][  T975] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  350.557809][  T975] usb 3-1: config 0 descriptor??
[  350.618366][ T5866] usb 7-1: Using ep0 maxpacket: 32
[  350.624751][ T5866] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  350.647078][ T5866] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  350.658487][ T5866] usb 7-1: New USB device found, idVendor=1e7d, idProduct=2d5a, bcdDevice= 0.00
[  350.667959][ T5866] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  350.690615][ T5866] usb 7-1: config 0 descriptor??
[  351.011148][  T975] plantronics 0003:047F:FFFF.0009: reserved main item tag 0xd
[  351.023398][  T975] plantronics 0003:047F:FFFF.0009: No inputs registered, leaving
[  351.066799][  T975] plantronics 0003:047F:FFFF.0009: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.2-1/input0
[  352.125524][ T5866] savu 0003:1E7D:2D5A.000A: hiddev1,hidraw1: USB HID v0.00 Device [HID 1e7d:2d5a] on usb-dummy_hcd.6-1/input0
[  352.210920][ T5866] usb 3-1: USB disconnect, device number 17
[  352.469255][ T5927] usb 7-1: USB disconnect, device number 5
[  352.699223][T12510] netlink: 'syz.7.2276': attribute type 4 has an invalid length.
[  353.700903][T12521] futex_wake_op: syz.7.2279 tries to shift op by 32; fix this program
[  354.131417][   T30] audit: type=1400 audit(2000000092.543:92280): avc:  denied  { setcheckreqprot } for  pid=12534 comm="syz.2.2285" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=security permissive=1
[  354.566662][T12545] hub 9-0:1.0: USB hub found
[  354.572503][T12545] hub 9-0:1.0: 1 port detected
[  356.315966][T12561] netlink: 8 bytes leftover after parsing attributes in process `syz.7.2296'.
[  356.825903][T12573] lo: entered allmulticast mode
[  356.891977][   T30] audit: type=1326 audit(2000000095.303:92281): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12575 comm="syz.7.2304" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdfd018d169 code=0x7ffc0000
[  356.947940][   T30] audit: type=1326 audit(2000000095.303:92282): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12575 comm="syz.7.2304" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdfd018d169 code=0x7ffc0000
[  357.028073][   T30] audit: type=1326 audit(2000000095.343:92283): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12575 comm="syz.7.2304" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fdfd018d169 code=0x7ffc0000
[  357.051973][   T30] audit: type=1326 audit(2000000095.343:92284): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12575 comm="syz.7.2304" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdfd018d169 code=0x7ffc0000
[  357.075848][   T30] audit: type=1326 audit(2000000095.343:92285): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12575 comm="syz.7.2304" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdfd018d169 code=0x7ffc0000
[  357.099723][   T30] audit: type=1326 audit(2000000095.353:92286): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12575 comm="syz.7.2304" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fdfd018d169 code=0x7ffc0000
[  357.123716][   T30] audit: type=1326 audit(2000000095.353:92287): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12575 comm="syz.7.2304" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdfd018d169 code=0x7ffc0000
[  357.178797][   T30] audit: type=1326 audit(2000000095.353:92288): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12575 comm="syz.7.2304" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdfd018d169 code=0x7ffc0000
[  357.484207][   T30] audit: type=1326 audit(2000000095.383:92289): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12575 comm="syz.7.2304" exe="/root/syz-executor" sig=0 arch=c000003e syscall=292 compat=0 ip=0x7fdfd018d169 code=0x7ffc0000
[  357.751422][T12598] netlink: 8 bytes leftover after parsing attributes in process `syz.6.2308'.
[  361.749468][T12639] xt_time: unknown flags 0xc
[  362.280142][T12645] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2323'.
[  364.325038][T12655] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:1)
[  365.456618][ T5829] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  365.465001][ T5829] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  365.474857][ T5829] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  365.482438][ T5829] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  365.491148][ T5829] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  365.498914][ T5829] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  366.661237][   T30] kauditd_printk_skb: 4 callbacks suppressed
[  366.661251][   T30] audit: type=1400 audit(2000000105.074:92294): avc:  denied  { setopt } for  pid=12683 comm="syz.7.2334" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1
[  366.828986][T12698] Illegal XDP return value 4294966772 on prog  (id 313) dev syz_tun, expect packet loss!
[  367.373129][ T8117] bridge_slave_1: left allmulticast mode
[  367.383680][ T8117] bridge_slave_1: left promiscuous mode
[  367.396093][ T8117] bridge0: port 2(bridge_slave_1) entered disabled state
[  367.405234][ T8117] bridge_slave_0: left allmulticast mode
[  367.410958][ T8117] bridge_slave_0: left promiscuous mode
[  367.416653][ T8117] bridge0: port 1(bridge_slave_0) entered disabled state
[  367.598205][ T5829] Bluetooth: hci0: command tx timeout
[  367.632901][T12719] Bluetooth: MGMT ver 1.23
[  368.045288][   T30] audit: type=1400 audit(2000000106.044:92295): avc:  denied  { write } for  pid=12709 comm="syz.5.2341" path="socket:[34616]" dev="sockfs" ino=34616 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  369.866062][ T5829] Bluetooth: hci0: command tx timeout
[  370.045779][ T8117] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  370.055325][ T8117] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  370.079643][ T8117] bond0 (unregistering): Released all slaves
[  370.104013][T12680] chnl_net:caif_netlink_parms(): no params data found
[  370.447196][   T30] audit: type=1400 audit(2000000108.764:92296): avc:  denied  { watch } for  pid=12743 comm="syz.2.2350" path="/461" dev="tmpfs" ino=2387 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[  370.533054][   T30] audit: type=1400 audit(2000000108.764:92297): avc:  denied  { watch_sb } for  pid=12743 comm="syz.2.2350" path="/461" dev="tmpfs" ino=2387 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1
[  370.559686][T12680] bridge0: port 1(bridge_slave_0) entered blocking state
[  370.568490][T12680] bridge0: port 1(bridge_slave_0) entered disabled state
[  370.583207][T12680] bridge_slave_0: entered allmulticast mode
[  370.597253][T12680] bridge_slave_0: entered promiscuous mode
[  370.613105][T12680] bridge0: port 2(bridge_slave_1) entered blocking state
[  370.627019][T12680] bridge0: port 2(bridge_slave_1) entered disabled state
[  370.639864][T12680] bridge_slave_1: entered allmulticast mode
[  370.646269][T12680] bridge_slave_1: entered promiscuous mode
[  370.711512][T12680] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  370.823582][T12680] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  370.852574][T12680] team0: Port device team_slave_0 added
[  370.862537][ T8117] hsr_slave_0: left promiscuous mode
[  370.868478][ T8117] hsr_slave_1: left promiscuous mode
[  370.874211][ T8117] batman_adv: batadv0: Removing interface: batadv_slave_0
[  370.882914][ T8117] batman_adv: batadv0: Removing interface: batadv_slave_1
[  371.601026][ T8117] team0 (unregistering): Port device team_slave_1 removed
[  371.636659][ T8117] team0 (unregistering): Port device team_slave_0 removed
[  371.873762][T12680] team0: Port device team_slave_1 added
[  371.895037][T12680] batman_adv: batadv0: Adding interface: batadv_slave_0
[  371.905780][T12680] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  371.932521][ T5829] Bluetooth: hci0: command tx timeout
[  371.940011][T12680] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  371.974571][T12756] bond_slave_0: entered promiscuous mode
[  371.980404][T12756] bond_slave_1: entered promiscuous mode
[  371.987645][T12756] vlan2: entered promiscuous mode
[  371.993340][T12756] bond0: entered promiscuous mode
[  372.020200][T12756] bond0: left promiscuous mode
[  372.025690][T12756] bond_slave_0: left promiscuous mode
[  372.031130][T12756] bond_slave_1: left promiscuous mode
[  372.078219][T12680] batman_adv: batadv0: Adding interface: batadv_slave_1
[  372.087177][T12680] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  372.148122][T12680] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  372.319245][T12680] hsr_slave_0: entered promiscuous mode
[  372.339949][T12772] cgroup: noprefix used incorrectly
[  372.347667][T12680] hsr_slave_1: entered promiscuous mode
[  373.669740][T12680] netdevsim netdevsim8 netdevsim0: renamed from eth0
[  374.237548][ T5829] Bluetooth: hci0: command tx timeout
[  374.258769][T12680] netdevsim netdevsim8 netdevsim1: renamed from eth1
[  374.298731][ T8117] IPVS: stop unused estimator thread 0...
[  374.305068][T12680] netdevsim netdevsim8 netdevsim2: renamed from eth2
[  374.400901][T12680] netdevsim netdevsim8 netdevsim3: renamed from eth3
[  374.507552][   T30] audit: type=1400 audit(2000000112.914:92298): avc:  denied  { ioctl } for  pid=12801 comm="syz.6.2368" path="socket:[35859]" dev="sockfs" ino=35859 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  374.517510][T12680] 8021q: adding VLAN 0 to HW filter on device bond0
[  374.590372][   T30] audit: type=1400 audit(2000000113.004:92299): avc:  denied  { read } for  pid=12805 comm="syz.2.2370" name="usbmon0" dev="devtmpfs" ino=716 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usbmon_device_t tclass=chr_file permissive=1
[  374.598467][T12680] 8021q: adding VLAN 0 to HW filter on device team0
[  374.630259][   T30] audit: type=1400 audit(2000000113.004:92300): avc:  denied  { open } for  pid=12805 comm="syz.2.2370" path="/dev/usbmon0" dev="devtmpfs" ino=716 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usbmon_device_t tclass=chr_file permissive=1
[  374.678341][ T8117] bridge0: port 1(bridge_slave_0) entered blocking state
[  374.686185][ T8117] bridge0: port 1(bridge_slave_0) entered forwarding state
[  375.128847][ T8117] bridge0: port 2(bridge_slave_1) entered blocking state
[  375.135940][ T8117] bridge0: port 2(bridge_slave_1) entered forwarding state
[  376.551314][   T30] audit: type=1400 audit(2000000113.034:92301): avc:  denied  { ioctl } for  pid=12805 comm="syz.2.2370" path="/dev/usbmon0" dev="devtmpfs" ino=716 ioctlcmd=0x9208 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usbmon_device_t tclass=chr_file permissive=1
[  376.722513][T12680] 8021q: adding VLAN 0 to HW filter on device batadv0
[  376.830792][T12680] veth0_vlan: entered promiscuous mode
[  376.839308][T12680] veth1_vlan: entered promiscuous mode
[  376.853551][T12680] veth0_macvtap: entered promiscuous mode
[  376.861492][T12680] veth1_macvtap: entered promiscuous mode
[  376.890750][T12680] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  376.901322][T12680] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  376.911598][T12680] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  376.923666][T12680] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  376.981967][T12680] batman_adv: batadv0: Interface activated: batadv_slave_0
[  376.993738][T12680] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  377.004601][T12680] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  377.015913][T12680] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  377.037359][T12680] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  377.070140][T12680] batman_adv: batadv0: Interface activated: batadv_slave_1
[  377.172730][T12680] netdevsim netdevsim8 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  377.206848][T12680] netdevsim netdevsim8 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  377.251364][T12680] netdevsim netdevsim8 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  377.269233][T12680] netdevsim netdevsim8 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  377.424894][   T53] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  377.439967][   T53] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  377.452672][   T81] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  377.475768][   T81] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  378.069112][ T1294] ieee802154 phy0 wpan0: encryption failed: -22
[  378.075406][ T1294] ieee802154 phy1 wpan1: encryption failed: -22
[  378.831303][T12871] netlink: 8 bytes leftover after parsing attributes in process `syz.8.2325'.
[  378.841922][T12871] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  378.852394][T12871] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  379.271758][T12891] netlink: 'syz.8.2396': attribute type 4 has an invalid length.
[  379.501067][T12899] bond_slave_0: entered promiscuous mode
[  379.506782][T12899] bond_slave_1: entered promiscuous mode
[  379.536724][T12899] vlan2: entered promiscuous mode
[  379.541783][T12899] bond0: entered promiscuous mode
[  379.558344][T12899] bond0: left promiscuous mode
[  379.567055][T12899] bond_slave_0: left promiscuous mode
[  379.572490][T12899] bond_slave_1: left promiscuous mode
[  379.785870][ T5829] Bluetooth: hci3: unexpected event for opcode 0x1003
[  379.794956][   T30] audit: type=1326 audit(2000000118.194:92302): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12909 comm="syz.5.2399" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f36c098d169 code=0x7ffc0000
[  379.823307][   T30] audit: type=1326 audit(2000000118.194:92303): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12909 comm="syz.5.2399" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f36c098d169 code=0x7ffc0000
[  379.864724][   T30] audit: type=1326 audit(2000000118.194:92304): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12909 comm="syz.5.2399" exe="/root/syz-executor" sig=0 arch=c000003e syscall=144 compat=0 ip=0x7f36c098d169 code=0x7ffc0000
[  379.910520][   T30] audit: type=1326 audit(2000000118.194:92305): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12909 comm="syz.5.2399" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f36c098d169 code=0x7ffc0000
[  379.937423][   T30] audit: type=1326 audit(2000000118.194:92306): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12909 comm="syz.5.2399" exe="/root/syz-executor" sig=0 arch=c000003e syscall=22 compat=0 ip=0x7f36c098d169 code=0x7ffc0000
[  379.963421][   T30] audit: type=1326 audit(2000000118.194:92307): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12909 comm="syz.5.2399" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f36c098d169 code=0x7ffc0000
[  380.062314][   T30] audit: type=1326 audit(2000000118.194:92308): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12909 comm="syz.5.2399" exe="/root/syz-executor" sig=0 arch=c000003e syscall=53 compat=0 ip=0x7f36c098d169 code=0x7ffc0000
[  380.175194][   T30] audit: type=1326 audit(2000000118.194:92309): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12909 comm="syz.5.2399" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f36c098d169 code=0x7ffc0000
[  380.198963][   T30] audit: type=1326 audit(2000000118.194:92310): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12909 comm="syz.5.2399" exe="/root/syz-executor" sig=0 arch=c000003e syscall=275 compat=0 ip=0x7f36c098d169 code=0x7ffc0000
[  380.222782][   T30] audit: type=1326 audit(2000000118.314:92311): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12909 comm="syz.5.2399" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f36c098d169 code=0x7ffc0000
[  380.679149][T12928] netlink: 'syz.7.2409': attribute type 4 has an invalid length.
[  381.090752][T12956] netlink: 'syz.7.2422': attribute type 4 has an invalid length.
[  381.290268][ T5829] Bluetooth: Wrong link type (-71)
[  381.297565][ T5829] Bluetooth: hci1: link tx timeout
[  381.302926][ T5829] Bluetooth: hci1: killing stalled connection 11:aa:aa:aa:aa:aa
[  381.306681][ T5865] usb 9-1: new high-speed USB device number 2 using dummy_hcd
[  381.637264][ T5927] usb 3-1: new high-speed USB device number 18 using dummy_hcd
[  382.086601][   T10] usb 7-1: new high-speed USB device number 6 using dummy_hcd
[  382.236581][   T10] usb 7-1: Using ep0 maxpacket: 16
[  382.264728][   T10] usb 7-1: config 0 interface 0 altsetting 2 endpoint 0x81 has invalid wMaxPacketSize 0
[  382.289509][   T10] usb 7-1: config 0 interface 0 has no altsetting 0
[  382.296145][   T10] usb 7-1: New USB device found, idVendor=060b, idProduct=500a, bcdDevice= 0.00
[  382.321936][T12989] bond_slave_0: entered promiscuous mode
[  382.327700][T12989] bond_slave_1: entered promiscuous mode
[  382.335930][   T10] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  382.344481][T12989] vlan2: entered promiscuous mode
[  382.353262][   T10] usb 7-1: config 0 descriptor??
[  382.358619][T12989] bond0: entered promiscuous mode
[  382.416941][T12989] bond0: left promiscuous mode
[  382.422225][T12989] bond_slave_0: left promiscuous mode
[  382.427707][T12989] bond_slave_1: left promiscuous mode
[  382.585371][   T10] usbhid 7-1:0.0: can't add hid device: -71
[  382.594573][   T10] usbhid 7-1:0.0: probe with driver usbhid failed with error -71
[  382.604620][T12991] netlink: 'syz.7.2435': attribute type 4 has an invalid length.
[  382.620188][   T10] usb 7-1: USB disconnect, device number 6
[  382.635500][ T5865] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  382.652591][ T5865] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  382.663067][ T5927] usb 3-1: Using ep0 maxpacket: 16
[  382.668294][ T5865] usb 9-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  382.682927][ T5865] usb 9-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  382.696206][ T5865] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  382.711334][ T5927] usb 3-1: config index 0 descriptor too short (expected 64548, got 36)
[  382.720049][ T5927] usb 3-1: config 0 has an invalid interface number: 29 but max is -1
[  382.730596][ T5865] usb 9-1: config 0 descriptor??
[  382.735672][ T5927] usb 3-1: config 0 has 1 interface, different from the descriptor's value: 0
[  382.746470][ T5927] usb 3-1: config 0 has no interface number 0
[  382.753011][ T5927] usb 3-1: config 0 interface 29 altsetting 0 bulk endpoint 0xA has invalid maxpacket 16
[  382.768089][ T5927] usb 3-1: config 0 interface 29 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0
[  382.780942][ T5927] usb 3-1: New USB device found, idVendor=050d, idProduct=2102, bcdDevice=70.d0
[  382.790383][ T5927] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  382.798625][ T5927] usb 3-1: Product: syz
[  382.802871][ T5927] usb 3-1: Manufacturer: syz
[  382.807695][ T5927] usb 3-1: SerialNumber: syz
[  382.817448][ T5927] usb 3-1: config 0 descriptor??
[  382.823229][T12970] raw-gadget.1 gadget.2: fail, usb_ep_enable returned -22
[  383.056575][   T10] usb 6-1: new high-speed USB device number 5 using dummy_hcd
[  383.151287][ T5865] plantronics 0003:047F:FFFF.000B: reserved main item tag 0xd
[  383.160307][ T5865] plantronics 0003:047F:FFFF.000B: No inputs registered, leaving
[  383.182042][ T5865] plantronics 0003:047F:FFFF.000B: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.8-1/input0
[  383.207995][   T10] usb 6-1: Using ep0 maxpacket: 8
[  383.215110][   T10] usb 6-1: unable to get BOS descriptor or descriptor too short
[  383.225203][   T10] usb 6-1: config 1 contains an unexpected descriptor of type 0x1, skipping
[  383.234610][   T10] usb 6-1: config 1 has an invalid descriptor of length 1, skipping remainder of the config
[  383.245114][   T10] usb 6-1: config 1 has 1 interface, different from the descriptor's value: 3
[  383.255857][   T10] usb 6-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  383.264992][   T10] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  383.273896][   T10] usb 6-1: Product: syz
[  383.279100][   T10] usb 6-1: Manufacturer: syz
[  383.283698][   T10] usb 6-1: SerialNumber: syz
[  383.347051][ T5831] Bluetooth: hci1: command 0x0405 tx timeout
[  383.416590][ T5813] usb 7-1: new high-speed USB device number 7 using dummy_hcd
[  383.426347][ T5865] usb 9-1: USB disconnect, device number 2
[  383.844012][ T5829] Bluetooth: hci3: Controller not accepting commands anymore: ncmd = 0
[  383.852536][ T5829] Bluetooth: hci3: Injecting HCI hardware error event
[  383.861365][ T5831] Bluetooth: hci3: hardware error 0x00
[  383.876431][ T5813] usb 7-1: Using ep0 maxpacket: 16
[  383.883042][ T5813] usb 7-1: unable to get BOS descriptor or descriptor too short
[  383.891805][ T5813] usb 7-1: config 1 has an invalid interface number: 206 but max is 0
[  383.900514][ T5813] usb 7-1: config 1 has no interface number 0
[  383.906818][   T10] usb 6-1: 0:2 : does not exist
[  383.914250][ T5813] usb 7-1: New USB device found, idVendor=152d, idProduct=0310, bcdDevice=3b.0a
[  383.924854][   T10] usb 6-1: USB disconnect, device number 5
[  383.930708][ T5813] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  383.939202][ T5813] usb 7-1: Product: syz
[  383.944169][ T5813] usb 7-1: Manufacturer: syz
[  383.950266][ T5813] usb 7-1: SerialNumber: syz
[  383.987258][ T5829] Bluetooth: hci0: command 0x0405 tx timeout
[  384.633791][ T5813] usb 7-1: USB disconnect, device number 7
[  384.647396][ T5927] usb 3-1: USB disconnect, device number 18
[  384.755671][T13039] netlink: 'syz.7.2455': attribute type 4 has an invalid length.
[  384.955613][T13051] vlan2: entered promiscuous mode
[  384.960741][T13051] bond0: entered promiscuous mode
[  384.965884][T13051] bond_slave_0: entered promiscuous mode
[  384.992962][T13051] bond_slave_1: entered promiscuous mode
[  385.032699][T13051] bond0: left promiscuous mode
[  385.039087][T13051] bond_slave_0: left promiscuous mode
[  385.049293][T13051] bond_slave_1: left promiscuous mode
[  385.736378][   T10] usb 3-1: new high-speed USB device number 19 using dummy_hcd
[  385.916447][ T5831] Bluetooth: hci3: Opcode 0x0c03 failed: -110
[  385.976661][   T10] usb 3-1: Using ep0 maxpacket: 32
[  386.044381][   T10] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  386.088613][   T10] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  386.110862][   T10] usb 3-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[  386.120842][   T10] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  386.134668][   T10] usb 3-1: config 0 descriptor??
[  386.149659][   T10] hub 3-1:0.0: USB hub found
[  386.364209][   T10] hub 3-1:0.0: 1 port detected
[  387.052523][   T10] hub 3-1:0.0: hub_hub_status failed (err = -71)
[  387.343627][   T10] hub 3-1:0.0: config failed, can't get hub status (err -71)
[  387.354866][   T10] usbhid 3-1:0.0: can't add hid device: -71
[  387.362737][   T10] usbhid 3-1:0.0: probe with driver usbhid failed with error -71
[  387.397460][   T10] usb 3-1: USB disconnect, device number 19
[  387.766208][ T5813] usb 9-1: new high-speed USB device number 3 using dummy_hcd
[  387.896259][ T5865] usb 8-1: new high-speed USB device number 4 using dummy_hcd
[  388.316423][ T5813] usb 9-1: New USB device found, idVendor=28bd, idProduct=0055, bcdDevice= 0.00
[  388.325516][ T5813] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  388.396694][ T5865] usb 8-1: Using ep0 maxpacket: 8
[  388.418100][ T5813] usb 9-1: config 0 descriptor??
[  388.437470][ T5865] usb 8-1: config index 0 descriptor too short (expected 301, got 45)
[  388.455864][ T5865] usb 8-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  388.486201][ T5865] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  388.512004][ T5865] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  388.526921][ T5865] usb 8-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  388.542476][ T5865] usb 8-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  388.551658][ T5865] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  389.759661][ T5865] usb 8-1: usb_control_msg returned -32
[  389.765252][ T5865] usbtmc 8-1:16.0: can't read capabilities
[  390.048371][ T5813] uclogic 0003:28BD:0055.000C: interface is invalid, ignoring
[  390.270468][ T5813] usb 9-1: USB disconnect, device number 3
[  390.432596][   T30] kauditd_printk_skb: 9 callbacks suppressed
[  390.432627][   T30] audit: type=1400 audit(2000000128.845:92321): avc:  denied  { connect } for  pid=13145 comm="syz.5.2493" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  390.744355][   T30] audit: type=1400 audit(2000000128.885:92322): avc:  denied  { write } for  pid=13145 comm="syz.5.2493" path="socket:[35572]" dev="sockfs" ino=35572 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  391.023359][T13157] rdma_op ffff8880783f19f0 conn xmit_rdma 0000000000000000
[  391.121821][   T30] audit: type=1400 audit(2000000129.535:92323): avc:  denied  { read } for  pid=13162 comm="syz.5.2499" name="nullb0" dev="devtmpfs" ino=696 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[  391.175361][ T5866] usb 8-1: USB disconnect, device number 4
[  391.192444][   T30] audit: type=1400 audit(2000000129.535:92324): avc:  denied  { open } for  pid=13162 comm="syz.5.2499" path="/dev/nullb0" dev="devtmpfs" ino=696 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[  391.231354][T13169] netlink: 96 bytes leftover after parsing attributes in process `syz.8.2501'.
[  391.282099][   T30] audit: type=1326 audit(2000000129.695:92325): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13173 comm="syz.2.2503" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f950f38d169 code=0x7ffc0000
[  391.317051][   T30] audit: type=1326 audit(2000000129.725:92326): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13173 comm="syz.2.2503" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f950f38d169 code=0x7ffc0000
[  391.343861][   T30] audit: type=1326 audit(2000000129.725:92327): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13173 comm="syz.2.2503" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f950f38d169 code=0x7ffc0000
[  391.370622][   T30] audit: type=1326 audit(2000000129.725:92328): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13173 comm="syz.2.2503" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f950f38d169 code=0x7ffc0000
[  391.439779][   T30] audit: type=1326 audit(2000000129.725:92329): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13173 comm="syz.2.2503" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f950f38d169 code=0x7ffc0000
[  391.478891][   T30] audit: type=1326 audit(2000000129.725:92330): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13173 comm="syz.2.2503" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f950f38d169 code=0x7ffc0000
[  391.990371][ T5865] hid-generic 0004:FFFFFFFF:0000.000D: unknown main item tag 0x0
[  391.998314][ T5865] hid-generic 0004:FFFFFFFF:0000.000D: unknown main item tag 0x0
[  392.025246][ T5865] hid-generic 0004:FFFFFFFF:0000.000D: unknown main item tag 0x0
[  392.071975][ T5865] hid-generic 0004:FFFFFFFF:0000.000D: unknown main item tag 0x0
[  392.208359][ T5865] hid-generic 0004:FFFFFFFF:0000.000D: unknown main item tag 0x0
[  392.231951][T13195] netlink: 'syz.6.2511': attribute type 4 has an invalid length.
[  392.243521][ T5865] hid-generic 0004:FFFFFFFF:0000.000D: unknown main item tag 0x0
[  392.266084][ T5866] usb 6-1: new high-speed USB device number 6 using dummy_hcd
[  392.276195][ T5865] hid-generic 0004:FFFFFFFF:0000.000D: unknown main item tag 0x0
[  392.304234][ T5865] hid-generic 0004:FFFFFFFF:0000.000D: unknown main item tag 0x0
[  392.371352][ T5865] hid-generic 0004:FFFFFFFF:0000.000D: unknown main item tag 0x0
[  392.393387][ T5865] hid-generic 0004:FFFFFFFF:0000.000D: unknown main item tag 0x0
[  392.403251][ T5865] hid-generic 0004:FFFFFFFF:0000.000D: unknown main item tag 0x0
[  392.428676][ T5865] hid-generic 0004:FFFFFFFF:0000.000D: unknown main item tag 0x0
[  392.436724][ T5865] hid-generic 0004:FFFFFFFF:0000.000D: unknown main item tag 0x0
[  392.444721][ T5865] hid-generic 0004:FFFFFFFF:0000.000D: unknown main item tag 0x0
[  392.456420][ T5866] usb 6-1: config 0 has no interfaces?
[  392.462034][ T5866] usb 6-1: New USB device found, idVendor=1a34, idProduct=0802, bcdDevice= 0.00
[  392.474561][ T5865] hid-generic 0004:FFFFFFFF:0000.000D: unknown main item tag 0x0
[  392.483078][ T5865] hid-generic 0004:FFFFFFFF:0000.000D: unknown main item tag 0x0
[  392.491138][ T5866] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  392.499532][ T5865] hid-generic 0004:FFFFFFFF:0000.000D: unknown main item tag 0x0
[  392.508419][ T5866] usb 6-1: config 0 descriptor??
[  392.513758][ T5865] hid-generic 0004:FFFFFFFF:0000.000D: unknown main item tag 0x0
[  392.522715][ T5865] hid-generic 0004:FFFFFFFF:0000.000D: unknown main item tag 0x0
[  392.530782][ T5865] hid-generic 0004:FFFFFFFF:0000.000D: unknown main item tag 0x0
[  392.777808][ T5865] hid-generic 0004:FFFFFFFF:0000.000D: unknown main item tag 0x0
[  392.813519][ T5865] hid-generic 0004:FFFFFFFF:0000.000D: unknown main item tag 0x0
[  392.957601][ T5927] usb 6-1: USB disconnect, device number 6
[  393.084415][ T5865] hid-generic 0004:FFFFFFFF:0000.000D: unknown main item tag 0x0
[  393.607800][ T5865] hid-generic 0004:FFFFFFFF:0000.000D: unknown main item tag 0x0
[  393.619533][ T5865] hid-generic 0004:FFFFFFFF:0000.000D: unknown main item tag 0x0
[  393.627845][ T5865] hid-generic 0004:FFFFFFFF:0000.000D: unknown main item tag 0x0
[  393.636860][ T5865] hid-generic 0004:FFFFFFFF:0000.000D: unknown main item tag 0x0
[  393.644678][ T5865] hid-generic 0004:FFFFFFFF:0000.000D: unknown main item tag 0x0
[  393.652502][ T5865] hid-generic 0004:FFFFFFFF:0000.000D: unknown main item tag 0x0
[  393.660310][ T5865] hid-generic 0004:FFFFFFFF:0000.000D: unknown main item tag 0x0
[  393.668167][ T5865] hid-generic 0004:FFFFFFFF:0000.000D: unknown main item tag 0x0
[  393.676254][ T5865] hid-generic 0004:FFFFFFFF:0000.000D: unknown main item tag 0x0
[  393.692853][ T5865] hid-generic 0004:FFFFFFFF:0000.000D: unknown main item tag 0x0
[  394.047154][ T5865] hid-generic 0004:FFFFFFFF:0000.000D: unknown main item tag 0x0
[  394.077830][ T5865] hid-generic 0004:FFFFFFFF:0000.000D: unknown main item tag 0x0
[  395.062514][ T5865] hid-generic 0004:FFFFFFFF:0000.000D: unknown main item tag 0x0
[  395.062555][ T5865] hid-generic 0004:FFFFFFFF:0000.000D: unknown main item tag 0x0
[  395.062574][ T5865] hid-generic 0004:FFFFFFFF:0000.000D: unknown main item tag 0x0
[  395.062592][ T5865] hid-generic 0004:FFFFFFFF:0000.000D: unknown main item tag 0x0
[  395.062610][ T5865] hid-generic 0004:FFFFFFFF:0000.000D: unknown main item tag 0x0
[  395.071591][ T5865] hid-generic 0004:FFFFFFFF:0000.000D: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz0
[  395.331762][T13220] tty tty3: ldisc open failed (-12), clearing slot 2
[  396.236924][T13233] netlink: 'syz.8.2522': attribute type 4 has an invalid length.
[  396.432774][   T30] kauditd_printk_skb: 36 callbacks suppressed
[  396.432789][   T30] audit: type=1400 audit(2000000134.845:92367): avc:  denied  { create } for  pid=13237 comm="syz.8.2524" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1
[  396.459212][   T30] audit: type=1400 audit(2000000134.845:92368): avc:  denied  { write } for  pid=13237 comm="syz.8.2524" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1
[  397.285730][   T30] audit: type=1400 audit(2000000135.445:92369): avc:  denied  { write } for  pid=13237 comm="syz.8.2524" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[  398.709876][T13263] vlan2: entered promiscuous mode
[  398.745656][T13263] bond0: entered promiscuous mode
[  398.750717][T13263] bond_slave_0: entered promiscuous mode
[  398.775721][T13263] bond_slave_1: entered promiscuous mode
[  398.791183][T13263] bond0: left promiscuous mode
[  399.283761][T13263] bond_slave_0: left promiscuous mode
[  399.289344][T13263] bond_slave_1: left promiscuous mode
[  399.313766][T13266] bridge0: port 3(vlan2) entered blocking state
[  399.320144][T13266] bridge0: port 3(vlan2) entered disabled state
[  399.326535][T13266] vlan2: entered allmulticast mode
[  399.332851][T13266] vlan2: left allmulticast mode
[  399.339784][    T9] usb 9-1: new high-speed USB device number 4 using dummy_hcd
[  399.526144][    T9] usb 9-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  399.565794][    T9] usb 9-1: config 27 interface 0 altsetting 0 endpoint 0xB has invalid maxpacket 44079, setting to 1024
[  399.605672][    T9] usb 9-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 1024
[  399.633133][    T9] usb 9-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  399.890535][    T9] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  399.995878][T13255] raw-gadget.0 gadget.8: fail, usb_ep_enable returned -22
[  400.004956][    T9] usb 9-1: Quirk or no altset; falling back to MIDI 1.0
[  400.046514][ T5829] Bluetooth: hci4: unexpected event for opcode 0x1003
[  400.062857][T13279] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:1)
[  400.342918][T13273] netlink: 96 bytes leftover after parsing attributes in process `syz.7.2534'.
[  400.403126][   T30] audit: type=1400 audit(2000000138.815:92370): avc:  denied  { write } for  pid=13283 comm="syz.2.2537" name="nullb0" dev="devtmpfs" ino=696 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[  400.443367][    T9] usb 9-1: USB disconnect, device number 4
[  400.495504][   T30] audit: type=1400 audit(2000000138.815:92371): avc:  denied  { map } for  pid=13283 comm="syz.2.2537" path="/dev/nullb0" dev="devtmpfs" ino=696 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[  400.557262][   T30] audit: type=1400 audit(2000000138.815:92372): avc:  denied  { execute } for  pid=13283 comm="syz.2.2537" path="/dev/nullb0" dev="devtmpfs" ino=696 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[  400.625468][ T5829] Bluetooth: hci0: command 0x0405 tx timeout
[  400.933221][ T5831] Bluetooth: hci4: ACL packet for unknown connection handle 201
[  401.002704][   T30] audit: type=1400 audit(2000000139.406:92373): avc:  denied  { mounton } for  pid=13292 comm="syz.6.2540" path="/proc/392/cgroup" dev="proc" ino=37347 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=file permissive=1
[  401.253843][   T30] audit: type=1400 audit(2000000139.406:92374): avc:  denied  { remount } for  pid=13292 comm="syz.6.2540" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysfs_t tclass=filesystem permissive=1
[  402.768882][T13306] tipc: Started in network mode
[  402.773774][T13306] tipc: Node identity ac1414aa, cluster identity 4711
[  402.781300][T13306] IPVS: nq: UDP 224.0.0.2:0 - no destination available
[  402.788622][T13306] tipc: Enabled bearer <udp:s>, priority 10
[  402.798319][ T5866] IPVS: starting estimator thread 0...
[  402.904925][   T30] audit: type=1400 audit(2000000141.316:92375): avc:  denied  { getopt } for  pid=13307 comm="syz.6.2546" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  402.926162][    C1] IPVS: nq: UDP 224.0.0.2:0 - no destination available
[  402.933769][T13309] IPVS: using max 41 ests per chain, 98400 per kthread
[  402.971743][ T5831] Bluetooth: hci4: command 0x0c1a tx timeout
[  403.065351][    C1] IPVS: nq: UDP 224.0.0.2:0 - no destination available
[  403.205522][    C1] IPVS: nq: UDP 224.0.0.2:0 - no destination available
[  403.345313][    C1] IPVS: nq: UDP 224.0.0.2:0 - no destination available
[  403.485296][    C1] IPVS: nq: UDP 224.0.0.2:0 - no destination available
[  403.625282][    C1] IPVS: nq: UDP 224.0.0.2:0 - no destination available
[  403.662870][   T30] audit: type=1400 audit(2000000142.066:92376): avc:  denied  { mount } for  pid=13314 comm="syz.6.2548" name="/" dev="autofs" ino=37962 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_t tclass=filesystem permissive=1
[  403.777245][ T5927] tipc: Node number set to 2886997162
[  403.925265][    C1] IPVS: nq: UDP 224.0.0.2:0 - no destination available
[  403.945432][   T30] audit: type=1400 audit(2000000142.076:92377): avc:  denied  { write } for  pid=13314 comm="syz.6.2548" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[  404.057992][ T5831] Bluetooth: hci2: unexpected event for opcode 0x1003
[  404.065482][ T5831] Bluetooth: hci4: Controller not accepting commands anymore: ncmd = 0
[  404.074539][ T5831] Bluetooth: hci4: Injecting HCI hardware error event
[  404.082981][ T5829] Bluetooth: hci4: hardware error 0x00
[  404.195270][    C1] IPVS: nq: UDP 224.0.0.2:0 - no destination available
[  404.248752][   T30] audit: type=1400 audit(2000000142.666:92378): avc:  denied  { unmount } for  pid=10965 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_t tclass=filesystem permissive=1
[  405.477594][   T81] netdevsim netdevsim8 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  405.529611][T13338] bond_slave_0: entered promiscuous mode
[  405.535325][T13338] bond_slave_1: entered promiscuous mode
[  405.555285][T13338] vlan2: entered promiscuous mode
[  405.560413][T13338] bond0: entered promiscuous mode
[  405.588400][T13338] bond0: left promiscuous mode
[  405.603817][T13338] bond_slave_0: left promiscuous mode
[  405.609285][T13338] bond_slave_1: left promiscuous mode
[  405.745214][    C1] net_ratelimit: 1 callbacks suppressed
[  405.745231][    C1] IPVS: nq: UDP 224.0.0.2:0 - no destination available
[  405.813507][   T81] netdevsim netdevsim8 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  406.065406][ T5819] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  406.076649][ T5819] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  406.084191][ T5819] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  406.092434][ T5819] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  406.101323][ T5819] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  406.108912][ T5819] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  406.146295][ T5829] Bluetooth: hci4: Opcode 0x0c03 failed: -110
[  406.154019][   T81] netdevsim netdevsim8 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  406.249232][T13359] hub 9-0:1.0: USB hub found
[  406.429913][T13359] hub 9-0:1.0: 1 port detected
[  406.436959][   T81] netdevsim netdevsim8 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  406.530707][   T30] audit: type=1400 audit(2000000144.946:92379): avc:  denied  { write } for  pid=13361 comm="syz.6.2565" name="task" dev="proc" ino=38108 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dir permissive=1
[  406.625207][   T30] audit: type=1400 audit(2000000144.946:92380): avc:  denied  { add_name } for  pid=13361 comm="syz.6.2565" name="net_prio.prioidx" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dir permissive=1
[  406.656932][   T30] audit: type=1400 audit(2000000144.946:92381): avc:  denied  { create } for  pid=13361 comm="syz.6.2565" name="net_prio.prioidx" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=file permissive=1
[  406.678413][   T30] audit: type=1400 audit(2000000144.946:92382): avc:  denied  { associate } for  pid=13361 comm="syz.6.2565" name="net_prio.prioidx" scontext=root:object_r:sysadm_t tcontext=system_u:object_r:proc_t tclass=filesystem permissive=1
[  406.770062][T13353] chnl_net:caif_netlink_parms(): no params data found
[  406.827759][   T81] bridge_slave_1: left allmulticast mode
[  406.833417][   T81] bridge_slave_1: left promiscuous mode
[  406.842181][   T81] bridge0: port 2(bridge_slave_1) entered disabled state
[  406.858384][   T81] bridge_slave_0: left allmulticast mode
[  406.864039][   T81] bridge_slave_0: left promiscuous mode
[  406.877512][   T81] bridge0: port 1(bridge_slave_0) entered disabled state
[  406.923575][   T30] audit: type=1400 audit(2000000145.336:92383): avc:  denied  { bind } for  pid=13372 comm="syz.6.2570" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  406.995119][   T30] audit: type=1400 audit(2000000145.336:92384): avc:  denied  { node_bind } for  pid=13372 comm="syz.6.2570" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=rawip_socket permissive=1
[  407.171120][ T5829] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  407.185866][ T5829] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  407.194573][ T5829] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  407.206089][ T5829] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  407.213444][ T5829] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[  407.221378][ T5829] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  407.258245][T13386] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2574'.
[  407.383093][   T81] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  407.394026][   T81] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  407.405473][   T81] bond0 (unregistering): Released all slaves
[  407.470977][T13395] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=5135 sclass=netlink_route_socket pid=13395 comm=syz.2.2577
[  407.577505][T13395] bridge0: port 3(syz_tun) entered disabled state
[  407.599208][T13395] bridge0: port 2(bridge_slave_1) entered disabled state
[  407.607603][T13395] bridge0: port 1(bridge_slave_0) entered disabled state
[  408.066650][ T5829] Bluetooth: hci2: Controller not accepting commands anymore: ncmd = 0
[  408.075584][ T5829] Bluetooth: hci2: Injecting HCI hardware error event
[  408.083559][ T5829] Bluetooth: hci2: hardware error 0x00
[  408.225401][ T5831] Bluetooth: hci0: command tx timeout
[  408.243870][T13395] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  408.282548][T13395] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  408.369647][T13395] veth0_vlan: left allmulticast mode
[  408.528307][T13395] netdevsim netdevsim2 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  408.555726][T13395] netdevsim netdevsim2 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  408.564606][T13395] netdevsim netdevsim2 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  408.593568][T13395] netdevsim netdevsim2 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  408.609447][T13395] netdevsim netdevsim2 netdevsim0: left promiscuous mode
[  408.843768][T13353] bridge0: port 1(bridge_slave_0) entered blocking state
[  408.858726][T13353] bridge0: port 1(bridge_slave_0) entered disabled state
[  408.921491][T13353] bridge_slave_0: entered allmulticast mode
[  409.078063][T13353] bridge_slave_0: entered promiscuous mode
[  409.234203][T13353] bridge0: port 2(bridge_slave_1) entered blocking state
[  409.247416][T13353] bridge0: port 2(bridge_slave_1) entered disabled state
[  409.254702][T13353] bridge_slave_1: entered allmulticast mode
[  409.265085][ T5831] Bluetooth: hci1: command tx timeout
[  409.285902][T13353] bridge_slave_1: entered promiscuous mode
[  409.457061][T13353] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  409.482701][   T30] kauditd_printk_skb: 4 callbacks suppressed
[  409.482713][   T30] audit: type=1400 audit(2000000147.896:92389): avc:  denied  { unmount } for  pid=5821 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=filesystem permissive=1
[  409.537682][T13353] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  409.578448][   T81] hsr_slave_0: left promiscuous mode
[  409.584124][   T81] hsr_slave_1: left promiscuous mode
[  409.599651][   T81] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  409.608817][   T81] batman_adv: batadv0: Removing interface: batadv_slave_0
[  409.672561][   T81] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  409.691594][   T81] batman_adv: batadv0: Removing interface: batadv_slave_1
[  409.739997][   T81] veth1_macvtap: left promiscuous mode
[  409.751930][   T81] veth0_macvtap: left promiscuous mode
[  409.766976][   T81] veth1_vlan: left promiscuous mode
[  409.780874][   T81] veth0_vlan: left promiscuous mode
[  409.842241][T13436] netlink: 8 bytes leftover after parsing attributes in process `syz.6.2587'.
[  410.199073][ T5829] Bluetooth: hci2: Opcode 0x0c03 failed: -110
[  410.214536][   T81] team0 (unregistering): Port device team_slave_1 removed
[  410.259143][   T81] team0 (unregistering): Port device team_slave_0 removed
[  410.318674][ T5829] Bluetooth: hci0: command tx timeout
[  410.643242][T13436] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  410.660433][T13382] chnl_net:caif_netlink_parms(): no params data found
[  410.670962][T13436] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  410.683398][T13353] team0: Port device team_slave_0 added
[  410.695634][T13353] team0: Port device team_slave_1 added
[  410.741889][T13353] batman_adv: batadv0: Adding interface: batadv_slave_0
[  410.749027][T13353] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  410.775544][T13353] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  410.792738][T13353] batman_adv: batadv0: Adding interface: batadv_slave_1
[  410.803451][T13353] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  410.830476][T13353] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  410.954701][T13353] hsr_slave_0: entered promiscuous mode
[  410.967664][T13353] hsr_slave_1: entered promiscuous mode
[  411.110792][   T30] audit: type=1400 audit(2000000149.516:92390): avc:  denied  { listen } for  pid=13449 comm="syz.6.2592" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[  411.405810][ T5829] Bluetooth: hci1: command 0x041b tx timeout
[  411.421371][T13382] bridge0: port 1(bridge_slave_0) entered blocking state
[  411.428642][T13382] bridge0: port 1(bridge_slave_0) entered disabled state
[  411.435925][T13382] bridge_slave_0: entered allmulticast mode
[  411.442370][T13382] bridge_slave_0: entered promiscuous mode
[  411.453288][T13382] bridge0: port 2(bridge_slave_1) entered blocking state
[  411.460539][T13382] bridge0: port 2(bridge_slave_1) entered disabled state
[  411.467840][T13382] bridge_slave_1: entered allmulticast mode
[  411.474194][T13382] bridge_slave_1: entered promiscuous mode
[  411.500203][T13382] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  411.513477][T13382] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  411.542755][T13382] team0: Port device team_slave_0 added
[  411.556478][T13382] team0: Port device team_slave_1 added
[  411.685360][   T81] netdevsim netdevsim7 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  412.692098][ T5819] Bluetooth: hci0: command tx timeout
[  412.731625][T13382] batman_adv: batadv0: Adding interface: batadv_slave_0
[  412.765367][T13382] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  412.792194][T13382] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  412.833300][T13382] batman_adv: batadv0: Adding interface: batadv_slave_1
[  412.840494][T13382] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  412.872116][T13382] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  412.883692][T13353] netdevsim netdevsim9 netdevsim0: renamed from eth0
[  412.896573][T13353] netdevsim netdevsim9 netdevsim1: renamed from eth1
[  412.925465][T13353] netdevsim netdevsim9 netdevsim2: renamed from eth2
[  412.941807][T13353] netdevsim netdevsim9 netdevsim3: renamed from eth3
[  413.031622][   T81] netdevsim netdevsim7 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  413.098272][T13382] hsr_slave_0: entered promiscuous mode
[  413.104354][T13382] hsr_slave_1: entered promiscuous mode
[  413.334018][T13382] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  413.425009][ T5819] Bluetooth: hci1: command 0x041b tx timeout
[  413.448006][T13382] Cannot create hsr debugfs directory
[  413.531151][   T81] netdevsim netdevsim7 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  413.605290][T13353] 8021q: adding VLAN 0 to HW filter on device bond0
[  413.636099][   T81] netdevsim netdevsim7 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  413.673096][T13353] 8021q: adding VLAN 0 to HW filter on device team0
[  413.684450][T13485] input: syz0 as /devices/virtual/input/input25
[  413.716371][ T6461] bridge0: port 1(bridge_slave_0) entered blocking state
[  413.723479][ T6461] bridge0: port 1(bridge_slave_0) entered forwarding state
[  413.747458][ T6461] bridge0: port 2(bridge_slave_1) entered blocking state
[  413.754571][ T6461] bridge0: port 2(bridge_slave_1) entered forwarding state
[  413.887133][T13353] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  413.894859][    T9] usb 3-1: new high-speed USB device number 20 using dummy_hcd
[  413.934465][   T30] audit: type=1400 audit(2000000152.346:92391): avc:  denied  { mount } for  pid=13486 comm="syz.5.2604" name="/" dev="configfs" ino=207 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=filesystem permissive=1
[  413.966572][   T81] bridge_slave_1: left allmulticast mode
[  413.979101][   T81] bridge_slave_1: left promiscuous mode
[  414.058581][    T9] usb 3-1: Using ep0 maxpacket: 8
[  414.066456][    T9] usb 3-1: config 0 has no interfaces?
[  414.073606][    T9] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  414.086866][   T30] audit: type=1400 audit(2000000152.346:92392): avc:  denied  { search } for  pid=13486 comm="syz.5.2604" name="/" dev="configfs" ino=207 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=dir permissive=1
[  414.110673][   T81] bridge0: port 2(bridge_slave_1) entered disabled state
[  414.116531][    T9] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  414.126097][   T30] audit: type=1400 audit(2000000152.346:92393): avc:  denied  { read } for  pid=13486 comm="syz.5.2604" name="/" dev="configfs" ino=207 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=dir permissive=1
[  414.149157][    T9] usb 3-1: Product: syz
[  414.154278][   T81] bridge_slave_0: left allmulticast mode
[  414.160348][   T30] audit: type=1400 audit(2000000152.346:92394): avc:  denied  { open } for  pid=13486 comm="syz.5.2604" path="/" dev="configfs" ino=207 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=dir permissive=1
[  414.232544][   T81] bridge_slave_0: left promiscuous mode
[  414.244866][    T9] usb 3-1: Manufacturer: syz
[  414.249731][    T9] usb 3-1: SerialNumber: syz
[  414.254966][   T81] bridge0: port 1(bridge_slave_0) entered disabled state
[  414.278502][    T9] usb 3-1: config 0 descriptor??
[  414.566897][ T5866] usb 3-1: USB disconnect, device number 20
[  414.606070][   T81] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  414.617113][   T81] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  414.628397][   T81] bond0 (unregistering): Released all slaves
[  414.709413][ T5819] Bluetooth: hci0: command tx timeout
[  414.750950][T13353] 8021q: adding VLAN 0 to HW filter on device batadv0
[  414.807924][   T81] tipc: Disabling bearer <udp:s>
[  414.823727][   T81] tipc: Left network mode
[  415.504775][ T5819] Bluetooth: hci1: command 0x041b tx timeout
[  415.826944][T13542] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2611'.
[  416.216171][T13357] usb 7-1: new high-speed USB device number 8 using dummy_hcd
[  416.374658][T13357] usb 7-1: Using ep0 maxpacket: 8
[  416.390056][T13357] usb 7-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  416.400637][ T5927] usb 3-1: new high-speed USB device number 21 using dummy_hcd
[  416.424495][T13357] usb 7-1: config 1 has 1 interface, different from the descriptor's value: 2
[  416.448377][T13357] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 100, changing to 10
[  416.472316][T13357] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 24936, setting to 1024
[  416.486368][T13357] usb 7-1: New USB device found, idVendor=0225, idProduct=0000, bcdDevice= 0.00
[  416.497466][T13357] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  416.576029][ T5927] usb 3-1: Using ep0 maxpacket: 32
[  416.605542][ T5927] usb 3-1: config 89 has an invalid interface number: 228 but max is 1
[  416.654957][ T5927] usb 3-1: config 89 has an invalid interface number: 251 but max is 1
[  416.663251][ T5927] usb 3-1: config 89 has no interface number 0
[  416.710120][ T5927] usb 3-1: config 89 has no interface number 1
[  416.739237][T13357] hub 7-1:1.0: bad descriptor, ignoring hub
[  416.749733][ T5927] usb 3-1: config 89 interface 228 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  416.767775][T13357] hub 7-1:1.0: probe with driver hub failed with error -5
[  416.802617][T13357] cdc_wdm 7-1:1.0: skipping garbage
[  416.822709][T13353] veth0_vlan: entered promiscuous mode
[  416.822720][ T5927] usb 3-1: config 89 interface 228 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  416.831716][T13353] veth1_vlan: entered promiscuous mode
[  416.857944][T13566] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=13566 comm=syz.5.2613
[  416.861629][T13353] veth0_macvtap: entered promiscuous mode
[  416.878416][T13357] cdc_wdm 7-1:1.0: skipping garbage
[  416.879800][   T30] audit: type=1400 audit(2000000155.266:92395): avc:  denied  { create } for  pid=13564 comm="syz.5.2613" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_tcpdiag_socket permissive=1
[  416.903897][ T5927] usb 3-1: config 89 interface 251 altsetting 19 has an invalid endpoint descriptor of length 2, skipping
[  416.908630][   T30] audit: type=1400 audit(2000000155.266:92396): avc:  denied  { write } for  pid=13564 comm="syz.5.2613" path="socket:[38843]" dev="sockfs" ino=38843 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_tcpdiag_socket permissive=1
[  416.944264][T13357] cdc_wdm 7-1:1.0: cdc-wdm0: USB WDM device
[  416.957001][T13357] cdc_wdm 7-1:1.0: Unknown control protocol
[  416.967242][ T5927] usb 3-1: config 89 interface 251 altsetting 19 endpoint 0xF has invalid wMaxPacketSize 0
[  416.991872][ T5927] usb 3-1: config 89 interface 251 altsetting 19 has 5 endpoint descriptors, different from the interface descriptor's value: 4
[  416.997092][   T30] audit: type=1400 audit(2000000155.266:92397): avc:  denied  { nlmsg_read } for  pid=13564 comm="syz.5.2613" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_tcpdiag_socket permissive=1
[  417.005841][T13357] usb 7-1: USB disconnect, device number 8
[  417.029603][   T30] audit: type=1400 audit(2000000155.296:92398): avc:  denied  { read } for  pid=13564 comm="syz.5.2613" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_tcpdiag_socket permissive=1
[  417.038850][ T5927] usb 3-1: config 89 interface 251 has no altsetting 0
[  417.062976][ T5927] usb 3-1: New USB device found, idVendor=07d1, idProduct=3e01, bcdDevice=2e.9e
[  417.073305][ T5927] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  417.085862][ T5927] usb 3-1: Product: syz
[  417.086948][T13353] veth1_macvtap: entered promiscuous mode
[  417.090056][ T5927] usb 3-1: Manufacturer: syz
[  417.101843][ T5927] usb 3-1: SerialNumber: syz
[  417.181689][   T81] hsr_slave_0: left promiscuous mode
[  417.188615][   T81] hsr_slave_1: left promiscuous mode
[  417.194349][   T81] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  417.207245][   T81] batman_adv: batadv0: Removing interface: batadv_slave_0
[  417.215097][   T81] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  417.222492][   T81] batman_adv: batadv0: Removing interface: batadv_slave_1
[  417.236448][   T81] veth1_macvtap: left promiscuous mode
[  417.241950][   T81] veth0_macvtap: left promiscuous mode
[  417.247672][   T81] veth1_vlan: left promiscuous mode
[  417.252965][   T81] veth0_vlan: left promiscuous mode
[  417.477284][T13357] usb 7-1: new high-speed USB device number 9 using dummy_hcd
[  417.510348][   T81] team0 (unregistering): Port device team_slave_1 removed
[  417.540664][   T81] team0 (unregistering): Port device team_slave_0 removed
[  417.596642][ T5819] Bluetooth: hci1: command 0x041b tx timeout
[  417.669511][T13357] usb 7-1: unable to get BOS descriptor or descriptor too short
[  417.679022][T13357] usb 7-1: config 1 interface 0 altsetting 6 endpoint 0x81 has invalid maxpacket 1072, setting to 1024
[  417.690301][T13357] usb 7-1: config 1 interface 0 altsetting 6 has 2 endpoint descriptors, different from the interface descriptor's value: 1
[  417.703459][T13357] usb 7-1: config 1 interface 0 has no altsetting 0
[  417.712207][T13357] usb 7-1: New USB device found, idVendor=04d8, idProduct=00df, bcdDevice= 0.40
[  417.721335][T13357] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  417.734001][T13357] usb 7-1: Product: syz
[  417.738235][T13357] usb 7-1: Manufacturer: syz
[  417.742848][T13357] usb 7-1: SerialNumber: syz
[  417.754534][T13532] raw-gadget.0 gadget.6: fail, usb_ep_enable returned -22
[  417.873721][ T5927] option 3-1:89.228: GSM modem (1-port) converter detected
[  417.880999][T13353] batman_adv: batadv0: Interface activated: batadv_slave_0
[  417.882824][T13353] batman_adv: batadv0: Interface activated: batadv_slave_1
[  417.908294][ T5927] usb 3-1: USB disconnect, device number 21
[  417.915687][ T5927] option 3-1:89.228: device disconnected
[  417.930979][T13353] netdevsim netdevsim9 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  417.940821][T13353] netdevsim netdevsim9 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  417.952796][T13353] netdevsim netdevsim9 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  417.961821][T13353] netdevsim netdevsim9 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  417.976307][T13357] usbhid 7-1:1.0: can't add hid device: -71
[  417.987530][T13357] usbhid 7-1:1.0: probe with driver usbhid failed with error -71
[  418.012992][T13357] usb 7-1: USB disconnect, device number 9
[  418.188271][ T8117] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  418.264586][ T8117] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  418.490691][T13382] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  418.498311][  T438] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  418.517469][T13382] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  418.521634][  T438] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  418.534155][T13382] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  418.552302][T13382] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  418.586555][   T81] IPVS: stop unused estimator thread 0...
[  418.755755][T13382] 8021q: adding VLAN 0 to HW filter on device bond0
[  418.843982][T13382] 8021q: adding VLAN 0 to HW filter on device team0
[  418.894815][   T12] bridge0: port 1(bridge_slave_0) entered blocking state
[  418.901900][   T12] bridge0: port 1(bridge_slave_0) entered forwarding state
[  418.965214][   T12] bridge0: port 2(bridge_slave_1) entered blocking state
[  418.972302][   T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[  419.061064][T13382] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  420.053548][T13382] 8021q: adding VLAN 0 to HW filter on device batadv0
[  420.125840][T13643] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2625'.
[  420.421387][   T30] audit: type=1400 audit(2000000158.837:92399): avc:  denied  { wake_alarm } for  pid=13662 comm="syz.5.2628" capability=35  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  420.613069][T13382] veth0_vlan: entered promiscuous mode
[  420.764665][   T30] audit: type=1400 audit(2000000159.177:92400): avc:  denied  { mounton } for  pid=13662 comm="syz.5.2628" path="/syzcgroup/unified/syz5" dev="cgroup2" ino=212 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=dir permissive=1
[  420.790124][T13664] MTD: Attempt to mount non-MTD device "/dev/nullb0"
[  420.856747][T13382] veth1_vlan: entered promiscuous mode
[  420.868580][T13664] cramfs: wrong magic
[  420.916744][T13664] kernel profiling enabled (shift: 17)
[  420.931798][T13382] veth0_macvtap: entered promiscuous mode
[  420.972296][T13382] veth1_macvtap: entered promiscuous mode
[  421.036501][T13382] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  421.070883][T13382] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  421.137235][T13382] batman_adv: batadv0: Interface activated: batadv_slave_0
[  421.155484][T13382] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  421.166248][T13382] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  421.185145][T13382] batman_adv: batadv0: Interface activated: batadv_slave_1
[  421.300931][T13382] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  421.327217][T13382] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  421.345733][T13382] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  421.365228][T13382] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  421.373970][   T30] audit: type=1400 audit(2000000159.777:92401): avc:  denied  { create } for  pid=13691 comm="syz.5.2635" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=kcm_socket permissive=1
[  421.418159][T13693] GUP no longer grows the stack in syz.5.2635 (13693): 200000004000-20000000a000 (200000002000)
[  421.450141][   T30] audit: type=1400 audit(2000000159.787:92402): avc:  denied  { write } for  pid=13691 comm="syz.5.2635" path="socket:[40462]" dev="sockfs" ino=40462 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=kcm_socket permissive=1
[  421.473957][T13693] CPU: 1 UID: 0 PID: 13693 Comm: syz.5.2635 Not tainted 6.14.0-syzkaller-03576-g1e1ba8d23dae #0 PREEMPT(full) 
[  421.473978][T13693] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  421.473985][T13693] Call Trace:
[  421.473989][T13693]  <TASK>
[  421.473993][T13693]  dump_stack_lvl+0x16c/0x1f0
[  421.474013][T13693]  gup_vma_lookup+0x1d2/0x220
[  421.474029][T13693]  __get_user_pages+0x234/0x36f0
[  421.474049][T13693]  ? __pfx___get_user_pages+0x10/0x10
[  421.474068][T13693]  get_user_pages_remote+0x258/0xb20
[  421.474085][T13693]  ? __pfx_mtree_load+0x10/0x10
[  421.474100][T13693]  ? __pfx_get_user_pages_remote+0x10/0x10
[  421.474120][T13693]  __access_remote_vm+0x233/0x7b0
[  421.474135][T13693]  ? __pfx___access_remote_vm+0x10/0x10
[  421.474150][T13693]  proc_pid_cmdline_read+0x4de/0x8f0
[  421.474167][T13693]  ? __pfx_proc_pid_cmdline_read+0x10/0x10
[  421.474183][T13693]  ? rw_verify_area+0xcf/0x680
[  421.474197][T13693]  ? __pfx_proc_pid_cmdline_read+0x10/0x10
[  421.474212][T13693]  vfs_readv+0x6bc/0x8a0
[  421.474239][T13693]  ? __pfx_vfs_readv+0x10/0x10
[  421.474262][T13693]  ? kmem_cache_free+0x2d4/0x4d0
[  421.474278][T13693]  ? __fget_files+0x20e/0x3c0
[  421.474296][T13693]  ? do_preadv+0x1af/0x270
[  421.474309][T13693]  do_preadv+0x1af/0x270
[  421.474323][T13693]  ? __pfx_do_preadv+0x10/0x10
[  421.474336][T13693]  ? rcu_is_watching+0x12/0xc0
[  421.474359][T13693]  do_syscall_64+0xcd/0x260
[  421.474381][T13693]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  421.474398][T13693] RIP: 0033:0x7f36c098d169
[  421.474410][T13693] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  421.474425][T13693] RSP: 002b:00007f36c1735038 EFLAGS: 00000246 ORIG_RAX: 0000000000000127
[  421.474440][T13693] RAX: ffffffffffffffda RBX: 00007f36c0ba5fa0 RCX: 00007f36c098d169
[  421.474449][T13693] RDX: 0000000000000001 RSI: 0000200000000040 RDI: 000000000000000b
[  421.474457][T13693] RBP: 00007f36c0a0e2a0 R08: 0000000000000000 R09: 0000000000000000
[  421.474465][T13693] R10: 0000000000000300 R11: 0000000000000246 R12: 0000000000000000
[  421.474473][T13693] R13: 0000000000000000 R14: 00007f36c0ba5fa0 R15: 00007fff07379c98
[  421.474488][T13693]  </TASK>
[  421.691562][    C1] vkms_vblank_simulate: vblank timer overrun
[  421.726215][  T438] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  421.734562][ T6461] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  421.742452][ T6461] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  421.754736][ T5813] usb 7-1: new high-speed USB device number 10 using dummy_hcd
[  421.799974][  T438] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  421.944293][ T5813] usb 7-1: Using ep0 maxpacket: 8
[  421.969425][ T5813] usb 7-1: config 168 descriptor has 1 excess byte, ignoring
[  422.018425][ T5819] Bluetooth: hci1: unexpected event for opcode 0x1003
[  422.019754][ T5813] usb 7-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  422.142440][ T5813] usb 7-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  422.173161][ T5813] usb 7-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  422.198842][ T5813] usb 7-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  422.247757][ T5813] usb 7-1: config 168 descriptor has 1 excess byte, ignoring
[  422.256709][ T5813] usb 7-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  422.366418][ T5813] usb 7-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  422.762440][ T5813] usb 7-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  422.802748][ T5813] usb 7-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  422.822857][ T5813] usb 7-1: config 168 descriptor has 1 excess byte, ignoring
[  422.831866][ T5813] usb 7-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  422.880366][ T5813] usb 7-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  422.911801][ T5813] usb 7-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  423.032413][ T5813] usb 7-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  423.060431][ T5813] usb 7-1: string descriptor 0 read error: -22
[  423.073822][ T5813] usb 7-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[  423.172078][ T5813] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  423.875367][ T5813] adutux 7-1:168.0: ADU100  now attached to /dev/usb/adutux0
[  423.937270][   T30] audit: type=1400 audit(2000000162.357:92403): avc:  denied  { read } for  pid=13736 comm="syz.2.2642" dev="sockfs" ino=40755 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  423.988687][T13741] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2643'.
[  424.064318][   T30] audit: type=1326 audit(2000000162.477:92404): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13687 comm="syz.6.2634" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f2b8e98d169 code=0x0
[  424.173063][ T5866] usb 7-1: USB disconnect, device number 10
[  424.473057][   T30] audit: type=1400 audit(2000000162.887:92405): avc:  denied  { create } for  pid=13763 comm="syz.9.2648" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_rdma_socket permissive=1
[  424.514431][   T30] audit: type=1400 audit(2000000162.917:92406): avc:  denied  { read } for  pid=13763 comm="syz.9.2648" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_rdma_socket permissive=1
[  424.798460][T13773] 9pnet_virtio: no channels available for device syz
[  424.824141][ T5866] usb 10-1: new high-speed USB device number 2 using dummy_hcd
[  425.294404][ T5866] usb 10-1: Using ep0 maxpacket: 32
[  425.319907][ T5866] usb 10-1: New USB device found, idVendor=0fd9, idProduct=0025, bcdDevice=29.40
[  425.342702][ T5866] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  425.364399][ T5866] usb 10-1: config 0 descriptor??
[  425.500622][T13793] overlayfs: missing 'workdir'
[  425.528526][   T30] audit: type=1400 audit(2000000163.947:92407): avc:  denied  { write } for  pid=13792 comm="syz.4.2652" name="renderD128" dev="devtmpfs" ino=626 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dri_device_t tclass=chr_file permissive=1
[  425.552085][    C1] vkms_vblank_simulate: vblank timer overrun
[  425.586038][ T5866] dvb-usb: found a 'Elgato EyeTV Sat' in cold state, will try to load a firmware
[  425.604054][   T30] audit: type=1400 audit(2000000163.947:92408): avc:  denied  { ioctl } for  pid=13792 comm="syz.4.2652" path="/dev/vhost-net" dev="devtmpfs" ino=1274 ioctlcmd=0xaf01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:vhost_device_t tclass=chr_file permissive=1
[  425.632041][ T5866] usb 10-1: Direct firmware load for dvb-usb-az6027-03.fw failed with error -2
[  425.645144][ T5866] usb 10-1: Falling back to sysfs fallback for: dvb-usb-az6027-03.fw
[  425.688909][   T30] audit: type=1400 audit(2000000164.007:92409): avc:  denied  { write } for  pid=13763 comm="syz.9.2648" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_rdma_socket permissive=1
[  426.103912][ T5819] Bluetooth: hci1: Controller not accepting commands anymore: ncmd = 0
[  426.113417][ T5819] Bluetooth: hci1: Injecting HCI hardware error event
[  426.518050][ T5819] Bluetooth: hci1: hardware error 0x00
[  426.565910][T13811] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  426.617170][T13816] program syz.5.2657 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  426.898983][T13821] netlink: 'syz.5.2658': attribute type 1 has an invalid length.
[  426.971230][T13821] netlink: 224 bytes leftover after parsing attributes in process `syz.5.2658'.
[  427.052397][   T30] audit: type=1400 audit(2000000165.467:92410): avc:  denied  { mount } for  pid=13820 comm="syz.5.2658" name="/" dev="overlay" ino=4 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[  427.616170][ T5927] usb 7-1: new full-speed USB device number 11 using dummy_hcd
[  428.097064][ T5927] usb 7-1: config 1 has an invalid interface number: 31 but max is 0
[  428.123249][ T5927] usb 7-1: config 1 has no interface number 0
[  428.146690][ T5927] usb 7-1: New USB device found, idVendor=0bda, idProduct=818c, bcdDevice=7e.60
[  428.165511][ T5927] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  428.267155][ T5927] usb 7-1: Product: syz
[  428.276562][ T5927] usb 7-1: Manufacturer: syz
[  428.281178][ T5927] usb 7-1: SerialNumber: syz
[  428.695547][ T5927] usb-storage 7-1:1.31: USB Mass Storage device detected
[  429.692237][ T5819] Bluetooth: hci1: Opcode 0x0c03 failed: -110
[  429.705188][   T30] audit: type=1400 audit(2000000167.987:92411): avc:  denied  { connect } for  pid=13855 comm="syz.2.2667" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[  430.741273][ T5927] usb 7-1: USB disconnect, device number 11
[  430.818857][T13885] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2673'.
[  430.863155][T13885] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  430.899882][T13885] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  430.997765][T13898] netlink: 48 bytes leftover after parsing attributes in process `syz.6.2675'.
[  431.037105][T13897] syzkaller0: entered promiscuous mode
[  431.054026][T13897] syzkaller0: entered allmulticast mode
[  431.072323][   T30] audit: type=1400 audit(2000000169.487:92412): avc:  denied  { relabelfrom } for  pid=13896 comm="syz.9.2676" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tun_socket permissive=1
[  431.091288][T13892] openvswitch: netlink: Flow actions attr not present in new flow.
[  431.126849][   T30] audit: type=1400 audit(2000000169.487:92413): avc:  denied  { relabelto } for  pid=13896 comm="syz.9.2676" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tun_socket permissive=1
[  432.705726][ T5829] Bluetooth: hci0: command 0x0405 tx timeout
[  432.795706][T13911] gre0: entered promiscuous mode
[  433.690345][T13937] program syz.5.2684 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  433.750649][T13934] overlayfs: missing 'workdir'
[  433.794469][ T5865] usb 5-1: new full-speed USB device number 17 using dummy_hcd
[  433.816450][   T30] audit: type=1400 audit(2000000172.237:92414): avc:  denied  { listen } for  pid=13940 comm="syz.5.2687" lport=55379 faddr=::ffff:172.20.255.187 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  433.839558][    C1] vkms_vblank_simulate: vblank timer overrun
[  433.908514][   T30] audit: type=1400 audit(2000000172.287:92415): avc:  denied  { accept } for  pid=13940 comm="syz.5.2687" lport=55379 faddr=::ffff:172.20.255.187 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  434.007603][ T5865] usb 5-1: config 1 has an invalid interface number: 31 but max is 0
[  434.029645][ T5865] usb 5-1: config 1 has no interface number 0
[  434.056597][ T5865] usb 5-1: New USB device found, idVendor=0bda, idProduct=818c, bcdDevice=7e.60
[  434.068874][T13947] trusted_key: encrypted_key: keyword 'new' not allowed when called from .update method
[  434.081283][   T30] audit: type=1400 audit(2000000172.497:92416): avc:  denied  { create } for  pid=13940 comm="syz.5.2687" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ax25_socket permissive=1
[  434.084409][ T5865] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  434.113715][ T5865] usb 5-1: Product: syz
[  434.118233][ T5865] usb 5-1: Manufacturer: syz
[  434.122980][ T5865] usb 5-1: SerialNumber: syz
[  434.143660][ T5865] usb-storage 5-1:1.31: USB Mass Storage device detected
[  434.357490][ T5869] usb 5-1: USB disconnect, device number 17
[  435.043341][T13999] input: syz1 as /devices/virtual/input/input26
[  435.567112][T14007] netlink: 352 bytes leftover after parsing attributes in process `syz.6.2695'.
[  436.556802][T14018] overlayfs: missing 'workdir'
[  436.749709][T14032] block device autoloading is deprecated and will be removed.
[  437.076900][   T30] audit: type=1400 audit(2000000175.498:92417): avc:  denied  { unmount } for  pid=10965 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nfs_t tclass=filesystem permissive=1
[  437.183686][T14048] program syz.2.2706 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  437.257917][T14045] overlayfs: missing 'workdir'
[  438.355375][   T30] audit: type=1400 audit(2000000176.758:92418): avc:  denied  { bind } for  pid=14068 comm="syz.2.2709" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1
[  438.367942][T14072] 9pnet_virtio: no channels available for device syz
[  438.522336][T14085] netlink: 68 bytes leftover after parsing attributes in process `syz.9.2716'.
[  438.752705][T14099] 9pnet_virtio: no channels available for device syz
[  439.126420][  T972] usb 3-1: new high-speed USB device number 22 using dummy_hcd
[  439.561014][ T1294] ieee802154 phy0 wpan0: encryption failed: -22
[  439.893282][  T972] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  439.924034][  T972] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  439.943130][T14109] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2722'.
[  439.952282][  T972] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  439.993229][  T972] usb 3-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  440.004753][T14109] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  440.028557][  T972] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  440.052557][  T972] usb 3-1: config 0 descriptor??
[  440.063279][T14109] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  440.121309][T14110] overlayfs: missing 'workdir'
[  440.140077][T14121] overlayfs: missing 'workdir'
[  440.543830][  T972] plantronics 0003:047F:FFFF.000E: No inputs registered, leaving
[  440.795618][  T972] plantronics 0003:047F:FFFF.000E: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.2-1/input0
[  441.918695][T14166] 9pnet_fd: Insufficient options for proto=fd
[  442.123766][ T5927] usb 3-1: reset high-speed USB device number 22 using dummy_hcd
[  442.586663][T14178] netlink: 58 bytes leftover after parsing attributes in process `syz.5.2736'.
[  442.606084][T14178] unsupported nlmsg_type 40
[  442.912277][T14196] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=14196 comm=syz.9.2738
[  443.008543][T14186] syz.5.2737 (14186): drop_caches: 2
[  443.038113][T14186] syz.5.2737 (14186): drop_caches: 2
[  443.059510][T14202] 
: renamed from bond0 (while UP)
[  443.197931][ T5865] usb 3-1: USB disconnect, device number 22
[  443.535794][T14212] overlayfs: failed to resolve './file1': -2
[  445.143231][T14242] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=14242 comm=syz.6.2750
[  446.055194][T14254] 9pnet_virtio: no channels available for device syz
[  447.127173][T14271] 9pnet_virtio: no channels available for device syz
[  447.433593][T14274] overlayfs: failed to resolve './file1': -2
[  447.522619][T14281] netlink: 32 bytes leftover after parsing attributes in process `syz.5.2757'.
[  447.548472][T14281] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2757'.
[  447.884160][T14285] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[  447.985864][T14280] kvm: pic: level sensitive irq not supported
[  447.986068][T14280] kvm: pic: non byte read
[  448.064858][   T30] audit: type=1400 audit(2000000186.488:92419): avc:  denied  { getopt } for  pid=14300 comm="syz.4.2760" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[  448.265513][   T30] audit: type=1400 audit(2000000186.658:92420): avc:  denied  { read } for  pid=14304 comm="syz.5.2762" path="socket:[41689]" dev="sockfs" ino=41689 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[  448.318866][T14309] sch_tbf: burst 4389 is lower than device lo mtu (65550) !
[  448.595919][T14313] sch_tbf: burst 0 is lower than device lo mtu (65550) !
[  448.656440][T14316] MTD: Attempt to mount non-MTD device "/dev/nullb0"
[  448.674228][T14316] cramfs: wrong magic
[  449.055816][   T30] audit: type=1400 audit(2000000187.468:92421): avc:  denied  { create } for  pid=14337 comm="syz.2.2772" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1
[  449.411571][T14351] 9pnet_virtio: no channels available for device syz
[  449.769393][   T30] audit: type=1400 audit(2000000188.188:92422): avc:  denied  { read write } for  pid=14337 comm="syz.2.2772" name="mouse0" dev="devtmpfs" ino=1045 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:mouse_device_t tclass=chr_file permissive=1
[  449.839246][   T30] audit: type=1400 audit(2000000188.188:92423): avc:  denied  { open } for  pid=14337 comm="syz.2.2772" path="/dev/input/mouse0" dev="devtmpfs" ino=1045 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:mouse_device_t tclass=chr_file permissive=1
[  449.867183][   T30] audit: type=1400 audit(2000000188.188:92424): avc:  denied  { read } for  pid=14337 comm="syz.2.2772" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1
[  450.182550][T14356] mac80211_hwsim hwsim20 wlan1: entered allmulticast mode
[  450.197079][T14356] bridge_slave_0: left allmulticast mode
[  450.203109][T14356] bridge_slave_0: left promiscuous mode
[  450.208731][T14356] bridge0: port 1(bridge_slave_0) entered disabled state
[  450.236079][T14356] bridge_slave_1: left allmulticast mode
[  450.241761][T14356] bridge_slave_1: left promiscuous mode
[  450.247596][T14356] bridge0: port 2(bridge_slave_1) entered disabled state
[  450.265706][T14359] netlink: 'syz.6.2776': attribute type 10 has an invalid length.
[  450.278174][T14356] bond0: (slave bond_slave_0): Releasing backup interface
[  450.313010][T14356] bond0: (slave bond_slave_1): Releasing backup interface
[  450.339386][T14356] team0: Port device team_slave_0 removed
[  450.355926][T14356] team0: Port device team_slave_1 removed
[  450.361827][T14356] batman_adv: batadv0: Removing interface: batadv_slave_0
[  450.369105][   T30] audit: type=1400 audit(2000000188.778:92425): avc:  denied  { setopt } for  pid=14347 comm="syz.4.2775" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[  450.426007][T14356] batman_adv: batadv0: Removing interface: batadv_slave_1
[  450.481429][T14359] mac80211_hwsim hwsim20 wlan1: left allmulticast mode
[  450.548112][T14359] bond0: (slave wlan1): Enslaving as an active interface with an up link
[  450.612877][   T30] audit: type=1400 audit(2000000189.038:92426): avc:  denied  { bind } for  pid=14368 comm="syz.5.2782" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[  450.962087][T14382] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=14382 comm=syz.6.2786
[  451.197465][   T30] audit: type=1400 audit(2000000189.618:92427): avc:  denied  { append } for  pid=14379 comm="syz.9.2785" name="mice" dev="devtmpfs" ino=916 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:mouse_device_t tclass=chr_file permissive=1
[  451.614770][T14391] 9pnet_virtio: no channels available for device syz
[  452.263253][T14393] netlink: 'syz.2.2788': attribute type 1 has an invalid length.
[  452.513421][ T5819] Bluetooth: hci0: command 0x0405 tx timeout
[  452.825630][T14393] netlink: 224 bytes leftover after parsing attributes in process `syz.2.2788'.
[  453.319055][   T30] audit: type=1326 audit(2000000191.738:92428): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14413 comm="syz.6.2797" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f2b8e98d169 code=0x0
[  453.837232][T14421] 9pnet_virtio: no channels available for device syz
[  454.113149][T14427] 8021q: VLANs not supported on vcan0
[  455.054711][   T30] audit: type=1326 audit(2000000193.479:92429): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14462 comm="syz.5.2814" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f36c098d169 code=0x0
[  455.540261][T14477] overlayfs: missing 'workdir'
[  455.549553][T14480] netlink: 24 bytes leftover after parsing attributes in process `syz.6.2817'.
[  455.582283][ T5819] Bluetooth: hci0: link tx timeout
[  455.588247][ T5819] Bluetooth: hci0: killing stalled connection 11:aa:aa:aa:aa:aa
[  456.949468][T14507] ksmbd: Daemon and kernel module version mismatch. ksmbd: 0, kernel module: 1. User-space ksmbd should terminate.
[  457.681722][ T5829] Bluetooth: hci0: command 0x0405 tx timeout
[  457.999967][T14518] overlayfs: missing 'workdir'
[  458.000870][   T30] audit: type=1326 audit(2000000196.419:92430): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14519 comm="syz.2.2836" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f950f38d169 code=0x0
[  458.034084][T14524] overlayfs: missing 'workdir'
[  459.306166][T14543] MTD: Attempt to mount non-MTD device "/dev/nullb0"
[  459.315270][T14543] cramfs: wrong magic
[  459.386250][T14546] netlink: 68 bytes leftover after parsing attributes in process `syz.2.2842'.
[  460.058623][   T30] audit: type=1400 audit(2000000198.469:92431): avc:  denied  { create } for  pid=14562 comm="syz.5.2850" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1
[  460.096946][   T30] audit: type=1400 audit(2000000198.479:92432): avc:  denied  { mount } for  pid=14562 comm="syz.5.2850" name="/" dev="debugfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:debugfs_t tclass=filesystem permissive=1
[  460.149549][   T30] audit: type=1400 audit(2000000198.479:92433): avc:  denied  { ioctl } for  pid=14562 comm="syz.5.2850" path="socket:[44331]" dev="sockfs" ino=44331 ioctlcmd=0x7453 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[  460.179470][   T30] audit: type=1400 audit(2000000198.479:92434): avc:  denied  { watch } for  pid=14562 comm="syz.5.2850" path="/503/file0" dev="debugfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:debugfs_t tclass=dir permissive=1
[  460.203818][   T30] audit: type=1400 audit(2000000198.479:92435): avc:  denied  { read } for  pid=14562 comm="syz.5.2850" name="ptp0" dev="devtmpfs" ino=1265 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1
[  460.250212][   T30] audit: type=1400 audit(2000000198.479:92436): avc:  denied  { open } for  pid=14562 comm="syz.5.2850" path="/dev/ptp0" dev="devtmpfs" ino=1265 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1
[  460.280148][   T30] audit: type=1400 audit(2000000198.479:92437): avc:  denied  { unmount } for  pid=7768 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:debugfs_t tclass=filesystem permissive=1
[  460.381585][T14569] MTD: Attempt to mount non-MTD device "/dev/nullb0"
[  460.383701][   T30] audit: type=1326 audit(2000000198.569:92438): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14564 comm="syz.4.2852" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fa811b8d169 code=0x0
[  460.392895][T14569] cramfs: wrong magic
[  460.495416][T14578] overlayfs: missing 'workdir'
[  460.724069][T14584] input: syz1 as /devices/virtual/input/input28
[  460.821217][T14587] wg1: entered promiscuous mode
[  460.845340][T14583] block nbd2: shutting down sockets
[  460.857020][T14587] wg1: entered allmulticast mode
[  460.880721][T14591] ksmbd: Daemon and kernel module version mismatch. ksmbd: 0, kernel module: 1. User-space ksmbd should terminate.
[  461.960154][T14610] 9pnet_fd: Insufficient options for proto=fd
[  462.210701][   T30] audit: type=1400 audit(2000000200.389:92439): avc:  denied  { write } for  pid=14605 comm="syz.4.2865" name="sg0" dev="devtmpfs" ino=747 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1
[  462.679855][T14622] overlayfs: The uuid=off requires a single fs for lower and upper, falling back to uuid=null.
[  462.690517][T14622] overlayfs: overlapping lowerdir path
[  463.222004][   T30] audit: type=1326 audit(2000000201.589:92440): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14625 comm="syz.6.2872" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f2b8e98d169 code=0x0
[  464.134433][T14641] netlink: 68 bytes leftover after parsing attributes in process `syz.4.2877'.
[  464.162432][T14639] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=14639 comm=syz.6.2876
[  464.509161][T14644] ksmbd: Daemon and kernel module version mismatch. ksmbd: 0, kernel module: 1. User-space ksmbd should terminate.
[  464.609275][T14646] overlayfs: missing 'workdir'
[  465.614540][T14660] MTD: Attempt to mount non-MTD device "/dev/nullb0"
[  465.646914][T14660] cramfs: wrong magic
[  465.796102][T14667] overlay: Unknown parameter 'permit_directio'
[  465.928656][T14679] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=14679 comm=syz.2.2890
[  466.825253][T14699] hub 9-0:1.0: USB hub found
[  466.830432][T14699] hub 9-0:1.0: 1 port detected
[  467.278825][T14698] syz.5.2894 (14698): drop_caches: 2
[  467.284602][T14698] syz.5.2894 (14698): drop_caches: 2
[  468.487027][T14715] ksmbd: Daemon and kernel module version mismatch. ksmbd: 0, kernel module: 1. User-space ksmbd should terminate.
[  468.511076][T14719] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  468.520442][T14719] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[  469.634768][T14737] geneve2: entered promiscuous mode
[  469.654726][T14737] geneve2: entered allmulticast mode
[  469.834160][T14741] team0: No ports can be present during mode change
[  470.101394][   T30] kauditd_printk_skb: 2 callbacks suppressed
[  470.101409][   T30] audit: type=1400 audit(2000000208.499:92443): avc:  denied  { bind } for  pid=14742 comm="syz.6.2911" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  470.524942][   T30] audit: type=1400 audit(2000000208.499:92444): avc:  denied  { listen } for  pid=14742 comm="syz.6.2911" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  470.544794][   T30] audit: type=1400 audit(2000000208.499:92445): avc:  denied  { accept } for  pid=14742 comm="syz.6.2911" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  470.812420][T14761] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  470.839857][T14761] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[  471.465126][T14773] overlayfs: missing 'workdir'
[  471.704929][   T30] audit: type=1400 audit(2000000210.119:92446): avc:  denied  { append } for  pid=14777 comm="syz.4.2920" name="snapshot" dev="devtmpfs" ino=92 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:acpi_bios_t tclass=chr_file permissive=1
[  471.810642][T14778] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  471.819799][T14778] Bluetooth: hci0: Opcode 0x0406 failed: -4
[  471.834088][T14778] Bluetooth: hci0: Opcode 0x0406 failed: -4
[  471.990351][T14796] 8021q: VLANs not supported on vcan0
[  472.214833][T14807] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  472.244087][T14807] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[  473.337872][T14830] 9pnet_virtio: no channels available for device syz
[  473.466570][T14838] overlayfs: missing 'lowerdir'
[  473.491375][  T972] usb 6-1: new full-speed USB device number 7 using dummy_hcd
[  473.593654][T14842] overlayfs: missing 'workdir'
[  473.664660][  T972] usb 6-1: config 1 has an invalid interface number: 31 but max is 0
[  473.684120][  T972] usb 6-1: config 1 has no interface number 0
[  473.695982][  T972] usb 6-1: New USB device found, idVendor=0bda, idProduct=818c, bcdDevice=7e.60
[  473.731225][  T972] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  473.770076][  T972] usb 6-1: Product: syz
[  473.794989][  T972] usb 6-1: Manufacturer: syz
[  473.814330][  T972] usb 6-1: SerialNumber: syz
[  473.825040][ T5829] Bluetooth: hci0: command 0x0405 tx timeout
[  473.891035][  T972] usb-storage 6-1:1.31: USB Mass Storage device detected
[  474.915397][T14839] block nbd6: shutting down sockets
[  475.243534][T14879] 9pnet_fd: Insufficient options for proto=fd
[  476.060479][ T5819] Bluetooth: hci0: command 0x0405 tx timeout
[  476.108571][T14883] overlayfs: missing 'lowerdir'
[  476.287087][T14890] 8021q: VLANs not supported on vcan0
[  476.445263][T14892] overlayfs: missing 'workdir'
[  476.971160][T14914] /dev/sg0: Can't lookup blockdev
[  477.951479][T14913] 9pnet_fd: Insufficient options for proto=fd
[  478.141138][ T5829] Bluetooth: hci0: command 0x0405 tx timeout
[  478.222863][T14917] overlayfs: missing 'lowerdir'
[  478.231758][T14919] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2967'.
[  478.241522][T14919] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  478.298637][T14919] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  478.312813][ T5829] Bluetooth: hci0: Ignoring HCI_Sync_Conn_Complete event for existing connection
[  478.336930][  T972] usb 6-1: USB disconnect, device number 7
[  478.612323][T14927] netlink: 8 bytes leftover after parsing attributes in process `syz.9.2969'.
[  479.401832][T14946] sch_tbf: burst 0 is lower than device bridge_slave_0 mtu (1514) !
[  479.442095][T14948] syz.5.2979 (14948): drop_caches: 2
[  479.450120][T14948] syz.5.2979 (14948): drop_caches: 2
[  480.221381][ T5829] Bluetooth: hci0: command 0x0405 tx timeout
[  481.145656][T14981] netlink: 24 bytes leftover after parsing attributes in process `syz.2.2990'.
[  481.382101][T14982] 9pnet_virtio: no channels available for device syz
[  482.112376][T14997] 9pnet_fd: Insufficient options for proto=fd
[  482.300981][ T5829] Bluetooth: hci0: command 0x0405 tx timeout
[  483.170849][T15014] 8021q: VLANs not supported on vcan0
[  483.176620][T14998] block nbd4: shutting down sockets
[  484.890295][   T30] audit: type=1400 audit(2000000223.300:92447): avc:  denied  { connect } for  pid=15035 comm="syz.5.3011" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  485.400930][T15040] netlink: 68 bytes leftover after parsing attributes in process `syz.4.3013'.
[  486.449700][T15060] 9pnet_virtio: no channels available for device syz
[  486.460952][ T5819] Bluetooth: hci0: command 0x0405 tx timeout
[  486.531612][T15059] overlayfs: missing 'workdir'
[  486.694709][T15062] kvm: kvm [15061]: vcpu0, guest rIP: 0x1be Unhandled WRMSR(0xc2) = 0x4000
[  486.735050][T15062] kvm: kvm [15061]: vcpu0, guest rIP: 0x1be Unhandled WRMSR(0xc2) = 0x4000
[  486.807848][T15062] kvm: kvm [15061]: vcpu0, guest rIP: 0x1be Unhandled WRMSR(0xc1) = 0x4000
[  486.919278][T15062] kvm: kvm [15061]: vcpu0, guest rIP: 0x1be Unhandled WRMSR(0xc1) = 0x4000
[  487.521335][T15073] 9pnet_fd: p9_fd_create_tcp (15073): problem connecting socket to 127.0.0.1
[  487.574967][T15073] 9pnet_fd: p9_fd_create_tcp (15073): problem connecting socket to 127.0.0.1
[  487.664986][T15073] 9pnet_fd: p9_fd_create_tcp (15073): problem connecting socket to 127.0.0.1
[  487.732446][T15087] syz.4.3025: attempt to access beyond end of device
[  487.732446][T15087] nbd4: rw=0, sector=1, nr_sectors = 1 limit=0
[  487.864197][T15087] qnx4: unable to read the superblock
[  487.954350][T15093] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3031'.
[  488.099359][T15093] bridge_slave_1 (unregistering): left allmulticast mode
[  488.109583][T15093] bridge_slave_1 (unregistering): left promiscuous mode
[  488.154274][T15093] bridge0: port 2(bridge_slave_1) entered disabled state
[  488.174591][T15097] overlayfs: missing 'workdir'
[  489.225882][ T5819] Bluetooth: hci0: Ignoring HCI_Sync_Conn_Complete event for existing connection
[  489.461047][T15121] syz.6.3039 (15121): drop_caches: 2
[  489.468230][T15121] syz.6.3039 (15121): drop_caches: 2
[  490.726890][ T5866] dvb-usb: did not find the firmware file 'dvb-usb-az6027-03.fw' (status -110). You can use <kernel_dir>/scripts/get_dvb_firmware to get the firmware
[  490.742911][ T5866] dvb_usb_az6027 10-1:0.0: probe with driver dvb_usb_az6027 failed with error -110
[  490.755658][ T5866] usb 10-1: USB disconnect, device number 2
[  491.286655][ T5819] Bluetooth: hci0: command 0x0405 tx timeout
[  491.310841][T15142] netlink: 'syz.2.3044': attribute type 4 has an invalid length.
[  491.437137][   T30] audit: type=1326 audit(2000000229.851:92448): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15117 comm="syz.9.3038" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f66b358d169 code=0x7ffc0000
[  491.474759][   T30] audit: type=1326 audit(2000000229.881:92449): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15117 comm="syz.9.3038" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f66b358d169 code=0x7ffc0000
[  491.525581][   T30] audit: type=1400 audit(2000000229.941:92450): avc:  denied  { connect } for  pid=15143 comm="syz.2.3046" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1
[  491.649318][   T30] audit: type=1400 audit(2000000229.941:92451): avc:  denied  { bind } for  pid=15143 comm="syz.2.3046" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1
[  491.778613][T15148] ptrace attach of "./syz-executor exec"[5821] was attempted by ""[15148]
[  492.092780][   T30] audit: type=1326 audit(2000000230.101:92452): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15117 comm="syz.9.3038" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f66b358d169 code=0x7ffc0000
[  492.117456][   T30] audit: type=1326 audit(2000000230.101:92453): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15117 comm="syz.9.3038" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f66b358d169 code=0x7ffc0000
[  492.141291][ T5819] Bluetooth: hci0: SCO packet for unknown connection handle 201
[  492.142166][   T30] audit: type=1326 audit(2000000230.101:92454): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15117 comm="syz.9.3038" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f66b358d169 code=0x7ffc0000
[  492.173985][   T30] audit: type=1326 audit(2000000230.101:92455): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15117 comm="syz.9.3038" exe="/root/syz-executor" sig=0 arch=c000003e syscall=53 compat=0 ip=0x7f66b358d169 code=0x7ffc0000
[  492.197754][   T30] audit: type=1326 audit(2000000230.101:92456): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15117 comm="syz.9.3038" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f66b358d169 code=0x7ffc0000
[  492.221655][   T30] audit: type=1326 audit(2000000230.101:92457): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15117 comm="syz.9.3038" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f66b358d169 code=0x7ffc0000
[  493.519538][T15166] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=15166 comm=syz.6.3043
[  493.701393][T15173] RDS: rds_bind could not find a transport for ::ffff:172.20.20.170, load rds_tcp or rds_rdma?
[  493.749918][T15137] syz_tun (unregistering): left allmulticast mode
[  493.770333][T15137] syz_tun (unregistering): left promiscuous mode
[  493.790234][   T10] usb 6-1: new low-speed USB device number 8 using dummy_hcd
[  493.797997][T15137] bridge0: port 3(syz_tun) entered disabled state
[  493.921086][ T5829] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  493.933418][ T5829] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  494.041577][ T5829] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  494.346924][ T5829] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  494.354504][ T5829] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[  494.355394][   T10] usb 6-1: config index 0 descriptor too short (expected 1307, got 27)
[  494.369989][ T5829] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  494.377176][   T10] usb 6-1: config 0 has an invalid interface number: 0 but max is -1
[  494.404237][   T10] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 0
[  494.415646][   T10] usb 6-1: too many endpoints for config 0 interface 0 altsetting 0: 246, using maximum allowed: 30
[  494.427535][   T10] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x84 is Bulk; changing to Interrupt
[  494.439353][   T10] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 246
[  494.455975][   T10] usb 6-1: string descriptor 0 read error: -22
[  494.475519][   T10] usb 6-1: New USB device found, idVendor=0460, idProduct=0008, bcdDevice=e2.de
[  494.500801][   T10] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  494.510730][   T10] usb 6-1: config 0 descriptor??
[  494.516784][T15169] raw-gadget.0 gadget.5: fail, usb_ep_enable returned -22
[  494.541608][   T10] hub 6-1:0.0: bad descriptor, ignoring hub
[  494.566792][   T10] hub 6-1:0.0: probe with driver hub failed with error -5
[  494.599412][   T10] input: USB Acecad 302 Tablet 0460:0008 as /devices/platform/dummy_hcd.5/usb6/6-1/6-1:0.0/input/input29
[  494.774311][T15177] chnl_net:caif_netlink_parms(): no params data found
[  494.938566][   T24] usb 6-1: USB disconnect, device number 8
[  495.076293][T15177] bridge0: port 1(bridge_slave_0) entered blocking state
[  495.152953][T15177] bridge0: port 1(bridge_slave_0) entered disabled state
[  495.178305][T15177] bridge_slave_0: entered allmulticast mode
[  495.190994][T15177] bridge_slave_0: entered promiscuous mode
[  495.201750][T15177] bridge0: port 2(bridge_slave_1) entered blocking state
[  495.304277][T15177] bridge0: port 2(bridge_slave_1) entered disabled state
[  495.312231][T15202] 9pnet_virtio: no channels available for device syz
[  495.351281][T15177] bridge_slave_1: entered allmulticast mode
[  495.358130][T15177] bridge_slave_1: entered promiscuous mode
[  495.425349][T15177] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  495.465024][T15177] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  495.711131][T15177] team0: Port device team_slave_0 added
[  496.158866][T15177] team0: Port device team_slave_1 added
[  496.208164][T15177] batman_adv: batadv0: Adding interface: batadv_slave_0
[  496.236982][T15177] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  496.268643][T15177] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  496.280179][T15177] batman_adv: batadv0: Adding interface: batadv_slave_1
[  496.287106][T15177] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  496.313157][T15177] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  496.339348][T15177] hsr_slave_0: entered promiscuous mode
[  496.353543][T15177] hsr_slave_1: entered promiscuous mode
[  496.364767][T15177] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  496.389541][T15177] Cannot create hsr debugfs directory
[  496.460224][ T5829] Bluetooth: hci3: command tx timeout
[  497.342293][T15177] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  497.415059][T15177] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  497.465046][T15177] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  497.501645][T15177] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  497.645651][T15177] 8021q: adding VLAN 0 to HW filter on device bond0
[  497.658451][T15177] 8021q: adding VLAN 0 to HW filter on device team0
[  497.681005][   T81] bridge0: port 1(bridge_slave_0) entered blocking state
[  497.688100][   T81] bridge0: port 1(bridge_slave_0) entered forwarding state
[  497.759712][ T7148] bridge0: port 2(bridge_slave_1) entered blocking state
[  497.766866][ T7148] bridge0: port 2(bridge_slave_1) entered forwarding state
[  497.912420][T15177] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  497.922834][   T30] kauditd_printk_skb: 29 callbacks suppressed
[  497.922848][   T30] audit: type=1400 audit(2000000236.331:92487): avc:  denied  { setopt } for  pid=15234 comm="syz.5.3071" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=kcm_socket permissive=1
[  498.094147][T15238] usb usb1: usbfs: interface 0 claimed by hub while 'syz.9.3069' sets config #1
[  498.388843][T15237] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  498.399787][T15237] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  498.409737][T15237] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  498.420151][T15237] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  498.540064][ T5829] Bluetooth: hci3: command tx timeout
[  498.661542][   T30] audit: type=1400 audit(2000000237.081:92488): avc:  denied  { getopt } for  pid=15245 comm="syz.5.3072" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dccp_socket permissive=1
[  499.143151][T15177] 8021q: adding VLAN 0 to HW filter on device batadv0
[  499.202850][T15177] veth0_vlan: entered promiscuous mode
[  499.218608][T15177] veth1_vlan: entered promiscuous mode
[  499.268634][T15177] veth0_macvtap: entered promiscuous mode
[  499.299409][T15177] veth1_macvtap: entered promiscuous mode
[  499.389245][T15177] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  499.518653][T15177] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  499.530007][T15177] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  499.543924][T15177] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  499.999307][T15177] batman_adv: batadv0: Interface activated: batadv_slave_0
[  500.066124][T15177] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  500.078436][T15177] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  500.089934][T15177] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  500.101269][T15177] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  500.149328][T15177] batman_adv: batadv0: Interface activated: batadv_slave_1
[  500.206164][T15177] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  500.279844][T15177] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  500.324241][T15177] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  500.333661][T15177] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  500.508132][   T30] audit: type=1400 audit(2000000238.921:92489): avc:  denied  { read write } for  pid=15268 comm="syz.6.3079" name="vga_arbiter" dev="devtmpfs" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:xserver_misc_device_t tclass=chr_file permissive=1
[  500.634371][ T5829] Bluetooth: hci3: command tx timeout
[  500.966761][ T1294] ieee802154 phy0 wpan0: encryption failed: -22
[  501.002080][ T8117] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  501.029219][ T8117] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  501.058930][ T8117] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  501.071030][ T8117] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  501.087955][   T30] audit: type=1400 audit(2000000238.921:92490): avc:  denied  { open } for  pid=15268 comm="syz.6.3079" path="/dev/vga_arbiter" dev="devtmpfs" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:xserver_misc_device_t tclass=chr_file permissive=1
[  501.492446][T15287] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=15287 comm=syz.5.3081
[  502.080125][T15286] 9pnet_fd: Insufficient options for proto=fd
[  502.699829][ T5829] Bluetooth: hci3: command tx timeout
[  502.717117][   T30] audit: type=1400 audit(2000000241.131:92491): avc:  denied  { getopt } for  pid=15292 comm="syz.2.3083" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[  504.174235][   T30] audit: type=1400 audit(2000000242.581:92492): avc:  denied  { read } for  pid=15305 comm="syz.6.3086" name="file0" dev="fuse" ino=64 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=blk_file permissive=1
[  504.191292][T15314] block device autoloading is deprecated and will be removed.
[  504.222742][   T30] audit: type=1400 audit(2000000242.581:92493): avc:  denied  { open } for  pid=15305 comm="syz.6.3086" path="/286/file0/file0" dev="fuse" ino=64 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=blk_file permissive=1
[  504.722248][   T30] audit: type=1400 audit(2000000243.131:92494): avc:  denied  { ioctl } for  pid=15305 comm="syz.6.3086" path="/286/file0/file0" dev="fuse" ino=64 ioctlcmd=0x301 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=blk_file permissive=1
[  505.704877][T15325] ------------[ cut here ]------------
[  505.710450][T15325] UBSAN: array-index-out-of-bounds in kernel/bpf/core.c:2384:29
[  505.710760][T15326] overlayfs: failed to resolve './file0/file0': -2
[  505.718071][T15325] index 16 is out of range for type '<unknown> *[16]'
[  505.731418][T15325] CPU: 1 UID: 0 PID: 15325 Comm: syz.4.3091 Not tainted 6.14.0-syzkaller-03576-g1e1ba8d23dae #0 PREEMPT(full) 
[  505.731439][T15325] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  505.731449][T15325] Call Trace:
[  505.731453][T15325]  <TASK>
[  505.731459][T15325]  dump_stack_lvl+0x16c/0x1f0
[  505.731486][T15325]  __ubsan_handle_out_of_bounds+0x11c/0x160
[  505.731508][T15325]  bpf_prog_select_runtime+0x665/0x6f0
[  505.731524][T15325]  ? selinux_bpf_prog_load+0x15f/0x1c0
[  505.731545][T15325]  bpf_prog_load+0xe70/0x2480
[  505.731562][T15325]  ? __pfx_bpf_prog_load+0x10/0x10
[  505.731576][T15325]  ? avc_has_perm_noaudit+0x149/0x3b0
[  505.731597][T15325]  ? irqentry_exit+0x3b/0x90
[  505.731624][T15325]  ? security_bpf+0x64/0x230
[  505.731647][T15325]  ? __sanitizer_cov_trace_pc+0x5f/0x70
[  505.731673][T15325]  __sys_bpf+0x4890/0x4c80
[  505.731689][T15325]  ? __pfx___sys_bpf+0x10/0x10
[  505.731708][T15325]  ? do_futex+0x122/0x350
[  505.731726][T15325]  ? __pfx_do_futex+0x10/0x10
[  505.731751][T15325]  ? xfd_validate_state+0x5d/0x180
[  505.731767][T15325]  ? rcu_is_watching+0x12/0xc0
[  505.731785][T15325]  __x64_sys_bpf+0x78/0xc0
[  505.731799][T15325]  ? lockdep_hardirqs_on+0x7c/0x110
[  505.731819][T15325]  do_syscall_64+0xcd/0x260
[  505.731843][T15325]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  505.731859][T15325] RIP: 0033:0x7fa811b8d169
[  505.731871][T15325] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  505.731886][T15325] RSP: 002b:00007fa812a1a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  505.731900][T15325] RAX: ffffffffffffffda RBX: 00007fa811da6160 RCX: 00007fa811b8d169
[  505.731911][T15325] RDX: 0000000000000048 RSI: 00002000000017c0 RDI: 0000000000000005
[  505.731920][T15325] RBP: 00007fa811c0e2a0 R08: 0000000000000000 R09: 0000000000000000
[  505.731929][T15325] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  505.731938][T15325] R13: 0000000000000000 R14: 00007fa811da6160 R15: 00007ffe4370d508
[  505.731955][T15325]  </TASK>
[  505.731959][T15325] ---[ end trace ]---
[  505.802357][T15330] overlayfs: missing 'workdir'
[  505.805966][T15325] Kernel panic - not syncing: UBSAN: panic_on_warn set ...
[  505.805980][T15325] CPU: 1 UID: 0 PID: 15325 Comm: syz.4.3091 Not tainted 6.14.0-syzkaller-03576-g1e1ba8d23dae #0 PREEMPT(full) 
[  505.806001][T15325] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  505.806013][T15325] Call Trace:
[  505.806018][T15325]  <TASK>
[  505.806024][T15325]  dump_stack_lvl+0x3d/0x1f0
[  505.806051][T15325]  panic+0x71c/0x800
[  505.806072][T15325]  ? __pfx_panic+0x10/0x10
[  505.806095][T15325]  ? __pfx__printk+0x10/0x10
[  505.806119][T15325]  check_panic_on_warn+0xab/0xb0
[  505.806141][T15325]  __ubsan_handle_out_of_bounds+0x143/0x160
[  505.806162][T15325]  bpf_prog_select_runtime+0x665/0x6f0
[  505.806178][T15325]  ? selinux_bpf_prog_load+0x15f/0x1c0
[  505.806198][T15325]  bpf_prog_load+0xe70/0x2480
[  505.806215][T15325]  ? __pfx_bpf_prog_load+0x10/0x10
[  505.806228][T15325]  ? avc_has_perm_noaudit+0x149/0x3b0
[  505.806247][T15325]  ? irqentry_exit+0x3b/0x90
[  505.806272][T15325]  ? security_bpf+0x64/0x230
[  505.806293][T15325]  ? __sanitizer_cov_trace_pc+0x5f/0x70
[  505.806316][T15325]  __sys_bpf+0x4890/0x4c80
[  505.806332][T15325]  ? __pfx___sys_bpf+0x10/0x10
[  505.806350][T15325]  ? do_futex+0x122/0x350
[  505.806367][T15325]  ? __pfx_do_futex+0x10/0x10
[  505.806390][T15325]  ? xfd_validate_state+0x5d/0x180
[  505.806406][T15325]  ? rcu_is_watching+0x12/0xc0
[  505.806423][T15325]  __x64_sys_bpf+0x78/0xc0
[  505.806438][T15325]  ? lockdep_hardirqs_on+0x7c/0x110
[  505.806457][T15325]  do_syscall_64+0xcd/0x260
[  505.806478][T15325]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  505.806493][T15325] RIP: 0033:0x7fa811b8d169
[  505.806505][T15325] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  505.806520][T15325] RSP: 002b:00007fa812a1a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  505.806536][T15325] RAX: ffffffffffffffda RBX: 00007fa811da6160 RCX: 00007fa811b8d169
[  505.806546][T15325] RDX: 0000000000000048 RSI: 00002000000017c0 RDI: 0000000000000005
[  505.806556][T15325] RBP: 00007fa811c0e2a0 R08: 0000000000000000 R09: 0000000000000000
[  505.806566][T15325] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  505.806575][T15325] R13: 0000000000000000 R14: 00007fa811da6160 R15: 00007ffe4370d508
[  505.806592][T15325]  </TASK>
[  505.811707][T15325] Kernel Offset: disabled